PT-2009-3298 · Toshiba · Toshiba Face Recognition

Published

2009-02-20

Updated

2017-08-17

CVE-2009-0657

CVSS v2.0

6.9

Medium

Vector

AV:L/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Toshiba Face Recognition version 2.0.2.32

Description The issue allows physically proximate attackers to obtain notebook access by presenting a large number of images for which the viewpoint and lighting have been modified to match a stored image of the authorized notebook user.

Recommendations For Toshiba Face Recognition version 2.0.2.32, consider temporarily restricting the use of the face recognition feature until a patch is available. As a mitigation measure, restrict physical access to the notebook to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-255

Related Identifiers

CVE-2009-0657

Affected Products

Toshiba Face Recognition

PT-2009-3298 · Toshiba · Toshiba Face Recognition

CVE-2009-0657

Weakness Enumeration

Related Identifiers

Affected Products

References · 7