PT-2004-2613 · Datakey · Datakey Rainbow Ikey2032

Publicado

2004-08-04

Atualizado

2017-07-11

CVE-2004-1709

CVSS v2.0

2.1

Baixa

Vetor

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Datakey Rainbow iKey2032 USB token (affected versions not specified)

Description The issue concerns the lack of encryption in communications between the token and the driver when using the CIP client package. This could allow local users to obtain the PINs of other users.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2004-1709

Produtos afetados

Datakey Rainbow Ikey2032

PT-2004-2613 · Datakey · Datakey Rainbow Ikey2032

CVE-2004-1709

Identificadores relacionados

Produtos afetados

Referências · 3