exploitDog

CVE-2001-1436

Опубликовано: 18 янв. 2001

Источник: nvd

CVSS2: 4.6

EPSS Низкий

Описание

Dallas Semiconductor iButton DS1991 returns predictable values when given an incorrect password, which makes it easier for users with physical access to conduct dictionary attacks against the device password.

Ссылки

http://www.atstake.com/research/advisories/2001/a011801-1.txt
Exploit
Vendor Advisory
http://www.kb.cert.org/vuls/id/178560
Exploit
Third Party Advisory
US Government Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/10625
http://www.atstake.com/research/advisories/2001/a011801-1.txt
Exploit
Vendor Advisory
http://www.kb.cert.org/vuls/id/178560
Exploit
Third Party Advisory
US Government Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/10625

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:h:dallas_semiconductor:ibutton:ds1991:*:*:*:*:*:*:*

EPSS

Процентиль: 56%

0.00343

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-g6p6-xc86-g98v

github

почти 4 года назад

Dallas Semiconductor iButton DS1991 returns predictable values when given an incorrect password, which makes it easier for users with physical access to conduct dictionary attacks against the device password.

EPSS

Процентиль: 56%

0.00343

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other