Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Diebold Global Election Management System (GEMS) Backdoor Account

from [Rainer Duffner] Network Security [Permanent Link]
Subject: Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes
Date: Wed, 22 Sep 2004 10:59:57 +0200 
Am Di, den 21.09.2004 schrieb pressinfo@diebold.com um 17:05:

In-Reply-To: <20040831203815.13871.qmail@www.securityfocus.com>

Diebold strongly refutes the existence of any "back doors" or "hidden codes"
in its GEMS software.  These inaccurate allegations appear to stem from those 
not
familiar with the product, misunderstanding the purpose of legitimate 
structures
 in the database.  These structures are well documented and have been 
reviewed 
(including at a source code level) by independent testing authorities as 
required 
by federal election regulations.


Last thing I remember is that these "reviews" resulted in a  rather
devastating verdict for the product. Would you like to provide a link to
an updated, independant review ? Having the source-code opened would
help, too.
Also, IIRC, your company is now being sued at least by one US-state over
"false claims".



cheers,
Rainer
-- 
===================================================
~     Rainer Duffner - rainer@ultra-secure.de     ~
~           Freising - Munich - Germany           ~
~    Unix - Linux - BSD - OpenSource - Security   ~
~  http://www.ultra-secure.de/~rainer/pubkey.pgp  ~
===================================================
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: New whitepaper "The Phishing Guide", Aleksandar Milivojevic
Next by Date:  Symantec Enterprise Firewall/VPN and Gateway Security 300 Series Appliances Multiple Issues, Sym Security
Previous by Thread:  Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes, Hollis Johnson
Next by Thread:  Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes, Mike Ely
Indexes:  [Date] [Thread] [Top] [All Lists]