CVE-2000-0275

Description

CRYPTOCard CryptoAdmin for PalmOS uses weak encryption to store a user's PIN number, which allows an attacker with access to the .PDB file to generate valid PT-1 tokens after cracking the PIN.

Severity

Overall Severity: N/A

CVSS Metrics

Type	Score	Severity	Vector

Affected Products

References

• http://archives.neohapsis.com/archives/bugtraq/2000-04/0033.html
• http://www.l0pht.com/advisories/cc-pinextract.txt
  ExploitVendor Advisory
• http://www.securityfocus.com/bid/1097
• http://archives.neohapsis.com/archives/bugtraq/2000-04/0033.html
• http://www.l0pht.com/advisories/cc-pinextract.txt
  ExploitVendor Advisory
• http://www.securityfocus.com/bid/1097