[gull] Diebold GEMS

Marc SCHAEFER schaefer at alphanet.ch
Mon Sep 13 12:11:01 CEST 2004


Une vulnérabilité (backdoor) dans un système de vote électronique
propriétaire:

   Diebold GEMS Central Tabulator Vote Database Integrity Compr...
   BugTraq ID: 11076
   Remote: Yes
   Date Published: Aug 31 2004
   Relevant URL: http://www.securityfocus.com/bid/11076
   Summary:
   It is reported that the GEMS Central Tabulator stores received votes
   in three segregated regions of an Access database.  The GEMs system
   harvests data from each of these database regions in order to generate
   reports.
   
   All of the tables in these separate database regions are linked
   together in an attempt to prevent database tampering, by ensuring that
   the table data corresponds to table data in other database regions.
   
   The Diebold GEMS Central Tabulator is reported prone to a
   vulnerability, where a two-digit code can be entered into a hidden
   location to de-link the tables in the GEMS database. This will permit
   an attacker to add sets of fake votes.

Plus d'information:
   http://www.conspiracyplanet.com/channel.cfm?ChannelID=31

Un HOWTO pour frauder avec ces machines:
   http://www.conspiracyplanet.com/channel.cfm?channelid=31&contentid=1510

Aucune idée de la qualité de ces informations.
   



More information about the gull mailing list