LSE discovers vulnerability in Granding Grand MA 300

Lesezeit: 1 Minute

During an internal evaluation of the Granding Grand MA 300 Fingerprint Access Device, the LSE Security Consultant Eric Sesterhenn discovered multiple security issues regarding the administrative PIN authentication. The flaws in the authentication protocol allow to reconstruct the PIN from sniffed data and effective brute-force attacks.


Affected Versions

The issues have been found in firmware version 6.60.

Read more in the corresponding Security Advisory

Von |2014-08-26T21:23:04+00:0026. August, 2014 um 21:23 Uhr|KEYIDENTITY|Noch keine Kommentare

Über den Autor: