CVE-2002-0268
CVSS7.2
发布时间 :2002-05-29 00:00:00
修订时间 :2016-10-17 22:17:59
NMCOS    

[原文]Identix BioLogon 3 allows users with physical access to the system to gain administrative privileges by using CTRL-ALT-DEL and running a "Browse" function, which runs Explorer with SYSTEM privileges.


[CNNVD]Identix BioLogon GINA认证绕过漏洞(CNNVD-200205-097)

        Identix BioLogon 3存在漏洞。具有物理访问权限的用户可以通过使用CTRL-ALT-DEL并运行“Browse”函数获取管理员权限,该漏洞可以运行具有SYSTEM权限的Explorer。

- CVSS (基础分值)

CVSS分值: 7.2 [严重(HIGH)]
机密性影响: COMPLETE [完全的信息泄露导致所有系统文件暴露]
完整性影响: COMPLETE [系统完整性可被完全破坏]
可用性影响: COMPLETE [可能导致系统完全宕机]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: LOCAL [漏洞利用需要具有物理访问权限或本地帐户]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

产品及版本信息(CPE)暂不可用

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0268
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-0268
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200205-097
(官方数据源) CNNVD

- 其它链接及资源

http://marc.info/?l=bugtraq&m=101366270807034&w=2
(UNKNOWN)  BUGTRAQ  20020212 Identix BioLogon 3
http://www.iss.net/security_center/static/8201.php
(UNKNOWN)  XF  biologon3-gina-bypass-authentication(8201)
http://www.securityfocus.com/bid/4101
(UNKNOWN)  BID  4101

- 漏洞信息

Identix BioLogon GINA认证绕过漏洞
高危 访问验证错误
2002-05-29 00:00:00 2005-10-20 00:00:00
本地  
        Identix BioLogon 3存在漏洞。具有物理访问权限的用户可以通过使用CTRL-ALT-DEL并运行“Browse”函数获取管理员权限,该漏洞可以运行具有SYSTEM权限的Explorer。

- 公告与补丁

        The vendor has reportedly made a patch available. Affected users should contact the vendor about details involving the availability of the patch.
        The vendor may be contacted via e-mail at the following address:
        

- 漏洞信息

12673
Identix BioLogon CTRL-ALT-DEL Administrative Access
Physical Access Required Authentication Management
Loss of Confidentiality, Loss of Integrity
Exploit Public

- 漏洞描述

BioLogon contains a flaw that may allow a malicious user to bypass authentication. The issue is triggered when CTRL-ALT-DEL is issued at a logon screen, which grants an attacker access to the GINA (Graphical Identification and Authentication) interface. From this interface, the attacker can initiate browsing with SYSTEM privileges. It is possible that the flaw may allow arbitrary file access and modification resulting in a loss of confidentiality and/or integrity.

- 时间线

2002-02-12 2002-02-02
2002-02-12 Unknow

- 解决方案

Currently, there are no known workarounds or upgrades to correct this issue. However, Identix has released a patch to address this vulnerability.

- 相关参考

- 漏洞作者

- 漏洞信息

Identix BioLogon GINA Authentication Bypass Vulnerability
Access Validation Error 4101
No Yes
2002-02-12 12:00:00 2009-07-11 10:56:00
This issue was reported to BugTraq on February 12th, 2002 by "Paul A Roberts" <proberts@teleport.com>.

- 受影响的程序版本

Identix BioLogon 3.0
- Microsoft Windows 2000 Advanced Server SP2
- Microsoft Windows 2000 Advanced Server SP1
- Microsoft Windows 2000 Advanced Server
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows 2000 Server SP2
- Microsoft Windows 2000 Server SP1
- Microsoft Windows 2000 Server
- Microsoft Windows NT Enterprise Server 4.0 SP6a
- Microsoft Windows NT Enterprise Server 4.0 SP5
- Microsoft Windows NT Enterprise Server 4.0 SP4
- Microsoft Windows NT Enterprise Server 4.0 SP3
- Microsoft Windows NT Enterprise Server 4.0 SP2
- Microsoft Windows NT Enterprise Server 4.0 SP1
- Microsoft Windows NT Enterprise Server 4.0
- Microsoft Windows NT Server 4.0 SP6a
- Microsoft Windows NT Server 4.0 SP5
- Microsoft Windows NT Server 4.0 SP4
- Microsoft Windows NT Server 4.0 SP3
- Microsoft Windows NT Server 4.0 SP2
- Microsoft Windows NT Server 4.0 SP1
- Microsoft Windows NT Server 4.0
- Microsoft Windows NT Workstation 4.0 SP6a
- Microsoft Windows NT Workstation 4.0 SP5
- Microsoft Windows NT Workstation 4.0 SP4
- Microsoft Windows NT Workstation 4.0 SP3
- Microsoft Windows NT Workstation 4.0 SP2
- Microsoft Windows NT Workstation 4.0 SP1
- Microsoft Windows NT Workstation 4.0
- Microsoft Windows XP Home
- Microsoft Windows XP Professional

- 漏洞讨论

Identix BioLogon is a software utility which provides support for biometric security measures (fingerprint readers, smartcards, etc.) on Microsoft Windows operating systems. Part of its design is to help restrict unauthorized users from physically accessing the host.

It is possible for a physical attacker to bypass the GINA (Graphical Identification and Authentication) interface. This may be accomplished if the attacker presses CTRL-ALT-DEL to access the GINA interface, and then selects the "More" option. Events may be selected and the attacker may initiate browsing. On Windows XP systems, the attacker selects the "Configure / Sounds" option after "More" to select events. Browsing grants system-level access to the host.

- 漏洞利用

There is no exploit code required.

- 解决方案

The vendor has reportedly made a patch available. Affected users should contact the vendor about details involving the availability of the patch.

The vendor may be contacted via e-mail at the following address:

<idxsupport@identix.com>

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站