[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes

To: Polazzo Justin <Justin.Polazzo@xxxxxxxxxxxxxxxxxxxxx>
Subject: Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes
From: Gene Cronk <gcronk@xxxxxxxx>
Date: Wed, 22 Sep 2004 12:24:25 -0400

Polazzo Justin wrote:

Can we get some source code to verify/disprove this? I notice there was
no technical documentation/information from either side.
Anyone else for coding Election Management Systems software under the
Open Software License? :)
Jp

-----Original Message----- From: pressinfo@xxxxxxxxxxx [mailto:pressinfo@xxxxxxxxxxx] Sent: Tuesday, September 21, 2004 11:05 AM To: bugtraq@xxxxxxxxxxxxxxxxx

Here's a start (no source code [of course], but it shows many other Diebold security concerns):

http://www.blackboxvoting.org/

May I ask why Diebold's software is based on Microsoft Access?!

--
Gene Cronk - ISSAP,CISSP,NSA-IAM (gcronk@xxxxxxxx)
The Robin Shepherd Group -- Systems Administrator
Office: (904)-359-0981 Ext. 36
Cell: (386)-795-3081  Web: http://www.trsg.net

References:
- RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes
  - From: Polazzo Justin

Prev by Date: iDEFENSE Security Advisory 09.22.04 - Sophos Small Business Suite Reserved Device Name Handling Vulnerability
Next by Date: Re: ICMP spoofed source tunneling
Previous by thread: RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes
Next by thread: Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes
Index(es):
- Date
- Thread