Vulnerabilities > CVE-2007-2023 - Local Security vulnerability in Secustick Usb Flash Drive

047910
CVSS 7.2 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
local
low complexity
secustick

Summary

USB20.dll in Secustick USB flash drive decouples the authorization and file access routines, which allows local users to bypass authentication requirements by altering the return value of the VerifyPassWord function.

Vulnerable Configurations

Part Description Count
Hardware
Secustick
1