PT-2004-2613 · Datakey · Datakey Rainbow Ikey2032

Published

2004-08-04

Updated

2017-07-11

CVE-2004-1709

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Datakey Rainbow iKey2032 USB token (affected versions not specified)

Description The issue concerns the lack of encryption in communications between the token and the driver when using the CIP client package. This could allow local users to obtain the PINs of other users.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-1709

Affected Products

Datakey Rainbow Ikey2032

PT-2004-2613 · Datakey · Datakey Rainbow Ikey2032

CVE-2004-1709

Related Identifiers

Affected Products

References · 3