ID
VAR-E-201207-0679
CVE
| cve_id: | CVE-2012-3018 | Trust: 0.3 |
TITLE
Iconics GENESIS32 and BizViz Local Authentication Bypass Vulnerability
Trust: 0.3
DESCRIPTION
Iconics GENESIS32 and BizViz are prone to a local authentication-bypass vulnerability.
A local attacker can exploit this issue to bypass authentication methods and gain unauthorized administrative access in the Security Configurator. Successful exploits may lead to other attacks.
Iconics GENESIS32 and BizViz versions 9.22 and prior are vulnerable.
Trust: 0.3
AFFECTED PRODUCTS
| vendor: | iconics | model: | genesis32 | scope: | eq | version: | 9.22 | Trust: 0.3 |
| vendor: | iconics | model: | bizviz | scope: | eq | version: | 9.22 | Trust: 0.3 |
EXPLOIT
An attacker can carry out this attack by gaining physical access to a vulnerable computer.
Trust: 0.3
PRICE
Free
Trust: 0.3
TYPE
Design Error
Trust: 0.3
CREDITS
Dr. Wesley McGrew of Mississippi State University
Trust: 0.3
EXTERNAL IDS
| db: | NVD | id: | CVE-2012-3018 | Trust: 0.3 |
| db: | BID | id: | 54732 | Trust: 0.3 |
REFERENCES
| url: | http://www.iconics.com/home/products/hmi-and-scada/genesis32.aspx | Trust: 0.3 |
| url: | http://www.iconics.com/ | Trust: 0.3 |
SOURCES
| db: | BID | id: | 54732 |
LAST UPDATE DATE
2022-07-27T09:33:00.767000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 54732 | date: | 2015-03-19T08:11:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 54732 | date: | 2012-07-30T00:00:00 |