CVE-2000-0275 Information

Description

CRYPTOCard CryptoAdmin for PalmOS uses weak encryption to store a user’s PIN number which allows an attacker with access to the .PDB file to generate valid PT-1 tokens after cracking the PIN.

Reference

http://archives.neohapsis.com/archives/bugtraq/2000-04/0033.html http://www.l0pht.com/advisories/cc-pinextract.txt http://www.securityfocus.com/bid/1097