PT-2009-3298 · Toshiba · Toshiba Face Recognition

Publicado

2009-02-20

Atualizado

2017-08-17

CVE-2009-0657

CVSS v2.0

6.9

Média

Vetor

AV:L/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Toshiba Face Recognition version 2.0.2.32

Description The issue allows physically proximate attackers to obtain notebook access by presenting a large number of images for which the viewpoint and lighting have been modified to match a stored image of the authorized notebook user.

Recommendations For Toshiba Face Recognition version 2.0.2.32, consider temporarily restricting the use of the face recognition feature until a patch is available. As a mitigation measure, restrict physical access to the notebook to minimize the risk of exploitation.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-255

Identificadores relacionados

CVE-2009-0657

Produtos afetados

Toshiba Face Recognition

PT-2009-3298 · Toshiba · Toshiba Face Recognition

CVE-2009-0657

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 7