exploits , vulnerabilities , articles , SafeWord e.Id Trivial PIN Brute-Force Vulnerability

Title	SafeWord e.Id Trivial PIN Brute-Force Vulnerability
Published	2000-12-14-12:00AM
Updated	2000-12-14-12:00AM
Class	Design Error
CVE	GENERIC-MAP-N ATCH
Remote	No
Local	Yes
Credit	This vulnerability was disclosed by @Stake, Inc.
Vulnerable	Secure Computing e.iD Authenticator for Palm 2.0 Palm Palm OS 3.3 Palm Palm OS 3.5.2
Not Vulnerable
Code	@Stake has made available in source code and executable form a tool that will extract and extract via brute force the PIN number from a "sceiddb.pdb" file. It can be found at: http://www.atstake.com/research/advisories/2000/eidextract.zip /data/vulnerabilities/exploits/eidextract.zip
TXT

Vulnerabilities - newest 10 RSS | More

• 2008-12-04 Jbook SQL Injection Vulnerability
• 2008-12-04 SquirrelMail Malformed HTML Mail Message HTML Injection Vulnerability
• 2008-12-04 HP-UX Unspecified Local Denial Of Service Vulnerability
• 2008-12-04 Netrw Vim Script Information Disclosure Vulnerability
• 2008-12-04 Sun Java Web Start and Java Plug-in Multiple Privilege Escalation Vulnerabilities
• 2008-12-03 Adobe Acrobat 9 Unspecified PDF Document Encryption Weakness
• 2008-12-03 Ocean12 Mailing List Manager Gold SQL Injection and Cross Site Scripting Vulnerabilities
• 2008-12-03 IBM Rational ClearQuest Maintenance Tool Local Information Disclosure Vulnerability
• 2008-12-03 VMware Products Unspecified Host Memory Corruption Vulnerability
• 2008-12-03 IBM Rational ClearQuest Web Multiple Unspecified Cross Site Scripting Vulnerabilities

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Thu, 04 Dec 2008 21:26:34 +0000