CVE-2006-3896

2006-12-19T19:28:00
ID CVE-2006-3896
Type cve
Reporter cve@mitre.org
Modified 2011-03-08T02:39:00

Description

The NeoScale Systems CryptoStor 700 series appliance before 2.6 relies on client-side ActiveX code for smartcard authentication, which allows remote attackers to bypass smartcard authentication, and gain access if able to present a valid username and password, by disabling ActiveX.