Insecure Password Hashing in IBM 4690 OS: Vulnerability in Toshiba Global Commerce Solutions 4690 POS

Insecure Password Hashing in IBM 4690 OS: Vulnerability in Toshiba Global Commerce Solutions 4690 POS

CVE-2014-0361 · LOW Severity

AV:L/AC:M/AU:S/C:P/I:P/A:N

The default configuration of IBM 4690 OS, as used in Toshiba Global Commerce Solutions 4690 POS and other products, hashes passwords with the ADXCRYPT algorithm, which makes it easier for context-dependent attackers to obtain sensitive information via unspecified cryptanalysis of an ADXCSOUF.DAT file.

Learn more about our Cis Benchmark Audit For Ibm I.