[gull] Diebold GEMS
Marc SCHAEFER
schaefer at alphanet.ch
Mon Sep 13 12:11:01 CEST 2004
Une vulnérabilité (backdoor) dans un système de vote électronique
propriétaire:
Diebold GEMS Central Tabulator Vote Database Integrity Compr...
BugTraq ID: 11076
Remote: Yes
Date Published: Aug 31 2004
Relevant URL: http://www.securityfocus.com/bid/11076
Summary:
It is reported that the GEMS Central Tabulator stores received votes
in three segregated regions of an Access database. The GEMs system
harvests data from each of these database regions in order to generate
reports.
All of the tables in these separate database regions are linked
together in an attempt to prevent database tampering, by ensuring that
the table data corresponds to table data in other database regions.
The Diebold GEMS Central Tabulator is reported prone to a
vulnerability, where a two-digit code can be entered into a hidden
location to de-link the tables in the GEMS database. This will permit
an attacker to add sets of fake votes.
Plus d'information:
http://www.conspiracyplanet.com/channel.cfm?ChannelID=31
Un HOWTO pour frauder avec ces machines:
http://www.conspiracyplanet.com/channel.cfm?channelid=31&contentid=1510
Aucune idée de la qualité de ces informations.
More information about the gull
mailing list