CVE-2009-0656

2009-02-2019:00:00

mitre

www.cve.org

6.3 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

41.7%

JSON

Asus SmartLogon 1.0.0005 allows physically proximate attackers to bypass “security functions” by presenting an image with a modified viewpoint that matches the posture of a stored image of the authorized notebook user.

References

security.bkis.vn/?p=292

www.blackhat.com/html/bh-dc-09/bh-dc-09-archives.html#Nguyen

www.blackhat.com/presentations/bh-dc-09/Nguyen/BlackHat-DC-09-Nguyen-Face-not-your-password.pdf

www.securityfocus.com/archive/1/498997

www.securityfocus.com/bid/32700

exchange.xforce.ibmcloud.com/vulnerabilities/48962