CVE-2010-0414

Sažetak

gnome-screensaver before 2.28.2 allows physically proximate attackers to bypass screen locking and access an unattended workstation by moving the mouse position to an external monitor and then disconnecting that monitor.

Reference

http://ftp.gnome.org/pub/GNOME/sources/gnome-screensaver/2.28/gnome-screensaver-2.28.2.news
http://git.gnome.org/browse/gnome-screensaver/commit/?id=a5f66339be6719c2b8fc478a1d5fc6545297d950
http://git.gnome.org/browse/gnome-screensaver/commit/?id=dcca89b7ab6e1220815af38da246434b2e13fd9f
http://lists.fedoraproject.org/pipermail/package-announce/2010-February/034904.html
http://secunia.com/advisories/38468
http://secunia.com/advisories/38532
http://secunia.com/advisories/38534
http://www.mandriva.com/security/advisories?name=MDVSA-2010:040
http://www.osvdb.org/62219
http://www.securityfocus.com/bid/38149
http://www.ubuntu.com/usn/USN-898-1
https://bugzilla.gnome.org/show_bug.cgi?id=609337
https://bugzilla.redhat.com/show_bug.cgi?id=562217

CVSS

Base:	7.2
Impact:	10.0
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

26-02-2010 - 07:11

Objavljeno

11-02-2010 - 20:30