CVE-2002-1017

Adobe eBook Reader 2.1 and 2.2 allows a user to copy eBooks to other systems by using the backup feature, capturing the encryption Challenge, and using the appropriate hash function to generate the activation code.

CVSS v2.0 2.1 LOW

2.1^/10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:L/AC:L/Au:N/C:N/I:P/A:N

Exploitability : 3.9 / Impact : 2.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://www.securityfocus.com/bid/5358	Vendor Advisory
http://www.iss.net/security_center/static/9740.php	Vendor Advisory
http://online.securityfocus.com/archive/1/285093

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:adobe:digital_editions:2.1::win:::::
	cpe:2.3:a:adobe:digital_editions:2.2::win:::::
	cpe:2.3:a:adobe:digital_editions:9.2.1::mac_os_x:::::
	cpe:2.3:a:adobe:digital_editions:9.2.2::mac_os_x:::::

Information

Published : 2002-10-03 21:00

Updated : 2008-09-05 13:29

NVD link : CVE-2002-1017

Mitre link : CVE-2002-1017

JSON object : View

CWE

NVD-CWE-Other

Products Affected

adobe

digital_editions

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.securityfocus.com/bid/5358", "name": "5358", "tags": ["Vendor Advisory"], "refsource": "BID"}, {"url": "http://www.iss.net/security_center/static/9740.php", "name": "adobe-ebook-bypass-activation(9740)", "tags": ["Vendor Advisory"], "refsource": "XF"}, {"url": "http://online.securityfocus.com/archive/1/285093", "name": "20020730 Vulnerability: protected Adobe eBooks can be copied between computers", "tags": [], "refsource": "BUGTRAQ"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Adobe eBook Reader 2.1 and 2.2 allows a user to copy eBooks to other systems by using the backup feature, capturing the encryption Challenge, and using the appropriate hash function to generate the activation code."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2002-1017", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 2.1, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "severity": "LOW", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2002-10-04T04:00Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:adobe:digital_editions:2.1:*:win:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:adobe:digital_editions:2.2:*:win:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:adobe:digital_editions:9.2.1:*:mac_os_x:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:adobe:digital_editions:9.2.2:*:mac_os_x:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2008-09-05T20:29Z"}

2.1 /10