PT-2002-1338 · Identix · Identix Biologon

Published

2002-05-03

Updated

2016-10-18

CVE-2002-0268

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Identix BioLogon version 3

Description The issue allows users with physical access to the system to gain administrative privileges. This can be achieved by using the CTRL-ALT-DEL combination and running a "Browse" function, which in turn runs Explorer with SYSTEM privileges.

Recommendations For Identix BioLogon version 3, consider restricting physical access to the system and limiting the use of the "Browse" function to prevent exploitation. As a temporary workaround, consider disabling the "Browse" function until a more permanent solution is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-0268

Affected Products

Identix Biologon

PT-2002-1338 · Identix · Identix Biologon

CVE-2002-0268

Related Identifiers

Affected Products

References · 4