PT-2009-3297 · Asus · Asus Smartlogon

Published

2009-02-20

Updated

2017-08-17

CVE-2009-0656

CVSS v2.0

6.9

Medium

Vector

AV:L/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Asus SmartLogon version 1.0.0005

Description The issue allows physically proximate attackers to bypass security functions by presenting an image with a modified viewpoint that matches the posture of a stored image of the authorized notebook user.

Recommendations For Asus SmartLogon version 1.0.0005, consider disabling the facial recognition feature until a patch is available to prevent exploitation. Restrict access to the device to minimize the risk of unauthorized access.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-255

Related Identifiers

CVE-2009-0656

Affected Products

Asus Smartlogon

PT-2009-3297 · Asus · Asus Smartlogon

CVE-2009-0656

Weakness Enumeration

Related Identifiers

Affected Products

References · 7