19 matches found
EUVD-2000-0274
Malware in sbrugna...
EUVD-2006-6128
Malware in sbrugna...
CVE-2014-5359
Directory traversal vulnerability in SafeNet Authentication Service SAS Outlook Web Access Agent formerly CRYPTOCard before 1.03.30109 allows remote attackers to read arbitrary files via a .. dot dot in the GetFile parameter to owa/owa...
CRYPTOCard CRYPTOAdmin 4.1 Weak Encryption Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/1097/info CRYPTOCard CRYPTOAdmin is a network authentication application for use with the Palm OS platform. CRYPTOAdmin generates a .pdb file which contains the username, PIN number, serial number, and key in encrypted or...
CRYPTO-Server installvariables.properties LDAP Credential Local Disclosure
A version of CRYPTOCard CRYPTO-Server, the server component of a commercial two-factor authentication system, is installed on the remote host. When CRYPTO-Server was installed on the remote host, the installer left credentials used to configure the application with Active Directory in a log file,...
CRYPTOCard CRYPTO-Server本地信息泄露漏洞
CryptoCard是一款允许在PDA上存储敏感信息的应用程序。 CryptoCard存在设计错误,本地攻击者可以利用漏洞获得敏感信息。 目前没有详细漏洞细节提供。 CRYPTOCard CRYPTO-Server 6.4 CRYPTOCard CRYPTO-Server 6.3 升级到CRYPTOCard 6.4.56版本: http://www.cryptocard.com/...
CVE-2006-6145
CRYPTOCard CRYPTO-Server before 6.4.56 stores LDAP credentials in plaintext in UninstallerData\installvariables.properties, which has insecure permissions and allows local users to obtain the credentials. NOTE: The provenance of this information is unknown; the details are obtained solely from...
CVE-2006-6145
CRYPTOCard CRYPTO-Server before 6.4.56 stores LDAP credentials in plaintext in UninstallerData\installvariables.properties, which has insecure permissions and allows local users to obtain the credentials. NOTE: The provenance of this information is unknown; the details are obtained solely from...
CVE-2006-6145
CRYPTOCard CRYPTO-Server (before 6.4.56) stores LDAP credentials in plaintext in UninstallerData\installvariables.properties with insecure file permissions, allowing local users to obtain the credentials. This is documented in CVE-2006-6145 and corroborated by related Nessus findings. The vulnera...
CVE-2000-0275
CRYPTOCard CryptoAdmin for PalmOS uses weak encryption to store a user's PIN number, which allows an attacker with access to the .PDB file to generate valid PT-1 tokens after cracking the PIN...
CVE-2000-0275
CRYPTOCard CryptoAdmin for PalmOS uses weak encryption to store a user PIN in the .PDB. An attacker with access to the .PDB can crack the PIN and generate valid PT-1 tokens. Affected product: CryptoAdmin for PalmOS. Root cause: weak PIN storage encryption. Impact: local attacker could access toke...
cc-pinextract.txt
@Stake Inc. L0pht Research Labs www.atstake.com www.L0pht.com Security Advisory Advisory Name: CRYPTOCard PalmToken PIN Extraction Release Date: April 10, 2000 Application: CRYPTOAdmin 4.1 server with CRYPTOCard PT-1 token 1.04 Platform: Server software on any environment and token software on Pa...
CRYPTOAdmin 4.1 server with PalmPilot PT-1 token 1.04 PIN Extract ion
@Stake Inc. L0pht Research Labs www.atstake.com www.L0pht.com Security Advisory Advisory Name: CRYPTOCard PalmToken PIN Extraction Release Date: April 10, 2000 Application: CRYPTOAdmin 4.1 server with CRYPTOCard PT-1 token 1.04 Platform: Server software on any environment and token software on Pa...
Уязвимость системы CRYPTOCard
В системах CRYPTOAdmin/CRYPTOCard используется 8-разрядный PIN-код. 100000000 вариантов можно перебрать методом "грубой силы" менее чем за 5 минут на современных вычислительных системах...
CVE-2000-0275
CRYPTOCard CryptoAdmin for PalmOS uses weak encryption to store a user's PIN number, which allows an attacker with access to the .PDB file to generate valid PT-1 tokens after cracking the PIN...
CRYPTOCard CRYPTOAdmin 4.1 - Weak Encryption (2)
source: https://www.securityfocus.com/bid/1097/info CRYPTOCard CRYPTOAdmin is a network authentication application for use with the Palm OS platform. CRYPTOAdmin generates a .pdb file which contains the username, PIN number, serial number, and key in encrypted or plaintext format. The PIN number...
CRYPTOCard CRYPTOAdmin 4.1 - Weak Encryption (1)
// source: https://www.securityfocus.com/bid/1097/info CRYPTOCard CRYPTOAdmin is a network authentication application for use with the Palm OS platform. CRYPTOAdmin generates a .pdb file which contains the username, PIN number, serial number, and key in encrypted or plaintext format. The PIN numb...
CRYPTOCard CRYPTOAdmin 4.1 - Weak Encryption (1)
CRYPTOCard CRYPTOAdmin 4.1 - Weak Encryption 1 // source: https://www.securityfocus.com/bid/1097/info CRYPTOCard CRYPTOAdmin is a network authentication application for use with the Palm OS platform. CRYPTOAdmin generates a .pdb file which contains the username, PIN number, serial number, and key...
CRYPTOCard CRYPTOAdmin 4.1 - Weak Encryption (2)
CRYPTOCard CRYPTOAdmin 4.1 - Weak Encryption 2 source: https://www.securityfocus.com/bid/1097/info CRYPTOCard CRYPTOAdmin is a network authentication application for use with the Palm OS platform. CRYPTOAdmin generates a .pdb file which contains the username, PIN number, serial number, and key in...