Multiple OleumTech Products CVE-2014-2361 Local Security Bypass Vulnerability
BID:68795
Info
Multiple OleumTech Products CVE-2014-2361 Local Security Bypass Vulnerability
| Bugtraq ID: | 68795 |
| Class: | Design Error |
| CVE: |
CVE-2014-2361 |
| Remote: | No |
| Local: | Yes |
| Published: | Jul 21 2014 12:00AM |
| Updated: | Jul 15 2015 12:10AM |
| Credit: | Lucas Apa, and Carlos Mario Penagos Hollman of IOActive. |
| Vulnerable: | |
| Not Vulnerable: | |
Discussion
Multiple OleumTech Products CVE-2014-2361 Local Security Bypass Vulnerability
Multiple OleumTech Products are prone to a local security-bypass vulnerability.
Attackers with physical access to the device may exploit this issue to bypass certain security restrictions and perform unauthorized actions.
The following products are vulnerable:
OleumTech WIO DH2 Wireless Gateway
OleumTech Sensor Wireless I/O Modules
Multiple OleumTech Products are prone to a local security-bypass vulnerability.
Attackers with physical access to the device may exploit this issue to bypass certain security restrictions and perform unauthorized actions.
The following products are vulnerable:
OleumTech WIO DH2 Wireless Gateway
OleumTech Sensor Wireless I/O Modules
Exploit / POC
Multiple OleumTech Products CVE-2014-2361 Local Security Bypass Vulnerability
An attacker with physical access to the computer can exploit this issue.
An attacker with physical access to the computer can exploit this issue.
Solution / Fix
Multiple OleumTech Products CVE-2014-2361 Local Security Bypass Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Multiple OleumTech Products CVE-2014-2361 Local Security Bypass Vulnerability
References:
References: