Vulnerability Description
The Aladdin Knowledge Systems eToken device allows attackers with physical access to the device to obtain sensitive information without knowing the PIN of the owner by resetting the PIN in the EEPROM.
CVSS Score
4.6
MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Aladdin Knowledge Systems | Etoken | 3.3.3 |
References
- http://www.l0pht.com/advisories/etoken-piepa.txt
- http://www.osvdb.org/3266
- http://www.securityfocus.com/bid/1170
- http://www.l0pht.com/advisories/etoken-piepa.txt
- http://www.osvdb.org/3266
- http://www.securityfocus.com/bid/1170
FAQ
What is CVE-2000-0427?
CVE-2000-0427 is a vulnerability with a CVSS score of 4.6 (MEDIUM). The Aladdin Knowledge Systems eToken device allows attackers with physical access to the device to obtain sensitive information without knowing the PIN of the owner by resetting the PIN in the EEPROM.
How severe is CVE-2000-0427?
CVE-2000-0427 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2000-0427?
Check the references section above for vendor advisories and patch information. Affected products include: Aladdin Knowledge Systems Etoken.