Vulnerabilities > CVE-2001-1116 - Authentication Bypass vulnerability in Identix BioLogon Client Biometric

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

identix

NVD

Published: 2001-08-02

Updated: 2017-10-10

Summary

Identix BioLogon 2.03 and earlier does not lock secondary displays on a multi-monitor system running Windows 98 or ME, which allows an attacker with physical access to the system to bypass authentication through a secondary display.

Vulnerable Configurations

Part	Description	Count
Application	Identix Identix Biologon 2.0 Identix Biologon 2.0.1 Identix Biologon 2.0.2 Identix Biologon 2.0.3	4

References

http://ntbugtraq.ntadvice.com/default.asp?pid=36&sid=1&A2=IND0108&L=NTBUGTRAQ&F=P&S=&P=71
http://ntbugtraq.ntadvice.com/default.asp?pid=36&sid=1&A2=ind0108&L=ntbugtraq&F=P&S=&P=724
http://www.osvdb.org/5453
http://www.securityfocus.com/bid/3140
https://exchange.xforce.ibmcloud.com/vulnerabilities/6948