ID CVE-2007-3069
Summary xscreensaver in Sun Solaris 10 before 20070604, when a GNOME session with Assistive Technology support is running, allows attackers with physical access to take control of the session after entering an Alt-Tab sequence.
References
Vulnerable Configurations
  • cpe:2.3:o:sun:solaris:10.0:-:sparc
    cpe:2.3:o:sun:solaris:10.0:-:sparc
  • cpe:2.3:o:sun:solaris:10.0:-:x86
    cpe:2.3:o:sun:solaris:10.0:-:x86
CVSS
Base: 4.6 (as of 06-06-2007 - 15:19)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
nessus via4
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS8_X86_115299.NASL
    description X11 6.4.1_x86: xscreensaver patch. Date this patch was last updated by Sun : Apr/16/07
    last seen 2018-09-01
    modified 2014-08-30
    plugin id 25076
    published 2007-04-19
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=25076
    title Solaris 8 (x86) : 115299-01
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_X86_120095-35.NASL
    description X11 6.6.2_x86: xscreensaver patch. Date this patch was last updated by Sun : Apr/14/14
    last seen 2018-10-31
    modified 2018-10-29
    plugin id 107855
    published 2018-03-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=107855
    title Solaris 10 (x86) : 120095-35
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_120094-36.NASL
    description X11 6.6.2: xscreensaver patch. Date this patch was last updated by Sun : Oct/13/14
    last seen 2018-10-27
    modified 2018-10-26
    plugin id 107354
    published 2018-03-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=107354
    title Solaris 10 (sparc) : 120094-36
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_120094.NASL
    description X11 6.6.2: xscreensaver patch. Date this patch was last updated by Sun : Oct/13/14 This plugin has been deprecated and either replaced with individual 120094 patch-revision plugins, or deemed non-security related.
    last seen 2019-02-21
    modified 2018-07-30
    plugin id 24373
    published 2007-02-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=24373
    title Solaris 10 (sparc) : 120094-36 (deprecated)
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_X86_120095-36.NASL
    description X11 6.6.2_x86: xscreensaver patch. Date this patch was last updated by Sun : Oct/13/14
    last seen 2018-10-31
    modified 2018-10-29
    plugin id 107856
    published 2018-03-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=107856
    title Solaris 10 (x86) : 120095-36
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_120094-35.NASL
    description X11 6.6.2: xscreensaver patch. Date this patch was last updated by Sun : Apr/14/14
    last seen 2018-10-27
    modified 2018-10-26
    plugin id 107353
    published 2018-03-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=107353
    title Solaris 10 (sparc) : 120094-35
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_X86_120095.NASL
    description X11 6.6.2_x86: xscreensaver patch. Date this patch was last updated by Sun : Oct/13/14 This plugin has been deprecated and either replaced with individual 120095 patch-revision plugins, or deemed non-security related.
    last seen 2019-02-21
    modified 2018-07-30
    plugin id 24385
    published 2007-02-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=24385
    title Solaris 10 (x86) : 120095-36 (deprecated)
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS8_115298.NASL
    description X11 6.4.1: xscreensaver patch. Date this patch was last updated by Sun : Apr/16/07
    last seen 2018-09-01
    modified 2014-08-30
    plugin id 25074
    published 2007-04-19
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=25074
    title Solaris 8 (sparc) : 115298-01
oval via4
accepted 2007-07-10T21:08:50.203-04:00
class vulnerability
contributors
name Pai Peng
organization Opsware, Inc.
description xscreensaver in Sun Solaris 10 before 20070604, when a GNOME session with Assistive Technology support is running, allows attackers with physical access to take control of the session after entering an Alt-Tab sequence.
family unix
id oval:org.mitre.oval:def:1832
status accepted
submitted 2007-06-07T14:01:00.000-04:00
title A Security Vulnerability in How xscreensaver(1) Interacts With GNOME Assistive Technology May Allow Arbitrary Command Execution
version 32
refmap via4
bid 24314
osvdb 36586
sectrack 1018194
secunia 25531
sunalert 102834
vupen ADV-2007-2056
xf sun-xscreensaver-command-execution(34722)
Last major update 30-10-2012 - 22:37
Published 06-06-2007 - 06:30
Last modified 10-10-2017 - 21:32
Back to Top