ID CVE-2007-3920
Summary GNOME screensaver 2.20 in Ubuntu 7.10, when used with Compiz, does not properly reserve input focus, which allows attackers with physical access to take control of the session after entering an Alt-Tab sequence, a related issue to CVE-2007-3069.
References
Vulnerable Configurations
  • cpe:2.3:o:ubuntu:ubuntu_linux:7.10:-:amd64
    cpe:2.3:o:ubuntu:ubuntu_linux:7.10:-:amd64
  • cpe:2.3:o:ubuntu:ubuntu_linux:7.10:-:i386
    cpe:2.3:o:ubuntu:ubuntu_linux:7.10:-:i386
  • cpe:2.3:o:ubuntu:ubuntu_linux:7.10:-:powerpc
    cpe:2.3:o:ubuntu:ubuntu_linux:7.10:-:powerpc
  • cpe:2.3:o:ubuntu:ubuntu_linux:7.10:-:sparc
    cpe:2.3:o:ubuntu:ubuntu_linux:7.10:-:sparc
  • cpe:2.3:a:compiz:compiz
    cpe:2.3:a:compiz:compiz
  • cpe:2.3:a:gnome:screensaver:2.20
    cpe:2.3:a:gnome:screensaver:2.20
CVSS
Base: 6.2 (as of 30-10-2007 - 11:39)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
LOCAL HIGH NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
nessus via4
  • NASL family Ubuntu Local Security Checks
    NASL id UBUNTU_USN-537-1.NASL
    description Jens Askengren discovered that gnome-screensaver became confused when running under Compiz, and could lose keyboard lock focus. A local attacker could exploit this to bypass the user's locked screen saver. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-11-28
    plugin id 28143
    published 2007-11-10
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=28143
    title Ubuntu 7.10 : gnome-screensaver vulnerability (USN-537-1)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_XORG-X11-XVNC-5317.NASL
    description This update fixes multiple vulnerabilities reported by iDefense : - CVE-2008-2360 - RENDER Extension heap buffer overflow - CVE-2008-2361 - RENDER Extension crash - CVE-2008-2362 - RENDER Extension memory corruption - CVE-2008-1379 - MIT-SHM arbitrary memory read - CVE-2008-1377 - RECORD and Security extensions memory corruption Additionally fixes for : - XvReputImage crashes due to Nulled PortPriv->pDraw - gnome-screensaver loses keyboard focus lock under compiz (CVE-2007-3920)
    last seen 2019-02-21
    modified 2014-06-13
    plugin id 33165
    published 2008-06-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=33165
    title openSUSE 10 Security Update : xorg-x11-Xvnc (xorg-x11-Xvnc-5317)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2008-0930.NASL
    description When enabling the 'unredirect fullscreen windows' option, compiz will unredirect fullscreen windows to improve performace. However, unredirecting will as a side effect break any grabs on that window, which compromises most screensavers. This X server update suppresses this unintended side effect and restores the security of the screensavers. See also CVE-2007-3069. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-11-28
    plugin id 30082
    published 2008-01-27
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=30082
    title Fedora 8 : xorg-x11-server-1.3.0.0-40.fc8 (2008-0930)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_XORG-X11-SERVER-5316.NASL
    description This update fixes multiple vulnerabilities reported by iDefense : - CVE-2008-2360 - RENDER Extension heap buffer overflow - CVE-2008-2361 - RENDER Extension crash - CVE-2008-2362 - RENDER Extension memory corruption - CVE-2008-1379 - MIT-SHM arbitrary memory read - CVE-2008-1377 - RECORD and Security extensions memory corruption Additionally fixes for : - gnome-screensaver loses keyboard focus lock under compiz (CVE-2007-3920)
    last seen 2019-02-21
    modified 2018-07-19
    plugin id 33166
    published 2008-06-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=33166
    title openSUSE 10 Security Update : xorg-x11-server (xorg-x11-server-5316)
  • NASL family Red Hat Local Security Checks
    NASL id REDHAT-RHSA-2008-0485.NASL
    description Updated compiz packages that prevent Compiz from breaking screen saver grabs are now available for Red Hat Enterprise Linux 5. This update has been rated as having low security impact by the Red Hat Security Response Team. Compiz is an OpenGL-based window and compositing manager. Most screen savers create a top-level fullscreen window to cover the desktop, and grab the input with that window. Compiz has an option to un-redirect that window, but in some cases, this breaks the grab and compromises the locked screen. (CVE-2007-3920) Users of compiz are advised to upgrade to these updated packages, which remove this option to resolve this issue.
    last seen 2019-02-21
    modified 2019-01-02
    plugin id 32427
    published 2008-05-22
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=32427
    title RHEL 5 : compiz (RHSA-2008:0485)
  • NASL family Ubuntu Local Security Checks
    NASL id UBUNTU_USN-537-2.NASL
    description USN-537-1 fixed vulnerabilities in gnome-screensaver. The fixes were incomplete, and only reduced the scope of the vulnerability, without fully solving it. This update fixes related problems in compiz. Jens Askengren discovered that gnome-screensaver became confused when running under Compiz, and could lose keyboard lock focus. A local attacker could exploit this to bypass the user's locked screen saver. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-11-28
    plugin id 28144
    published 2007-11-10
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=28144
    title Ubuntu 7.10 : compiz vulnerability (USN-537-2)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2008-0956.NASL
    description When enabling the 'unredirect fullscreen windows' option, compiz will unredirect fullscreen windows to improve performace. However, unredirecting will as a side effect break any grabs on that window, which compromises most screensavers. This X server update suppresses this unintended side effect and restores the security of the screensavers. See also CVE-2007-3069. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-11-28
    plugin id 30083
    published 2008-01-27
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=30083
    title Fedora 7 : xorg-x11-server-1.3.0.0-16.fc7 (2008-0956)
  • NASL family Scientific Linux Local Security Checks
    NASL id SL_20080521_COMPIZ_ON_SL5_X.NASL
    description Most screen savers create a top-level fullscreen window to cover the desktop, and grab the input with that window. Compiz has an option to un-redirect that window, but in some cases, this breaks the grab and compromises the locked screen. (CVE-2007-3920)
    last seen 2019-02-21
    modified 2019-01-07
    plugin id 60403
    published 2012-08-01
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=60403
    title Scientific Linux Security Update : compiz on SL5.x i386/x86_64
oval via4
accepted 2013-04-29T04:03:12.966-04:00
class vulnerability
contributors
  • name Aharon Chernin
    organization SCAP.com, LLC
  • name Dragos Prisaca
    organization G2, Inc.
definition_extensions
  • comment The operating system installed on the system is Red Hat Enterprise Linux 5
    oval oval:org.mitre.oval:def:11414
  • comment The operating system installed on the system is CentOS Linux 5.x
    oval oval:org.mitre.oval:def:15802
  • comment Oracle Linux 5.x
    oval oval:org.mitre.oval:def:15459
description GNOME screensaver 2.20 in Ubuntu 7.10, when used with Compiz, does not properly reserve input focus, which allows attackers with physical access to take control of the session after entering an Alt-Tab sequence, a related issue to CVE-2007-3069.
family unix
id oval:org.mitre.oval:def:10192
status accepted
submitted 2010-07-09T03:56:16-04:00
title GNOME screensaver 2.20 in Ubuntu 7.10, when used with Compiz, does not properly reserve input focus, which allows attackers with physical access to take control of the session after entering an Alt-Tab sequence, a related issue to CVE-2007-3069.
version 19
redhat via4
advisories
bugzilla
id 350271
title CVE-2007-3920 gnome-screensaver loses keyboard grab when running under compiz
oval
AND
  • comment Red Hat Enterprise Linux 5 is installed
    oval oval:com.redhat.rhsa:tst:20070055001
  • OR
    • AND
      • comment compiz is earlier than 0:0.0.13-0.37.20060817git.el5
        oval oval:com.redhat.rhsa:tst:20080485002
      • comment compiz is signed with Red Hat redhatrelease key
        oval oval:com.redhat.rhsa:tst:20080485003
    • AND
      • comment compiz-devel is earlier than 0:0.0.13-0.37.20060817git.el5
        oval oval:com.redhat.rhsa:tst:20080485004
      • comment compiz-devel is signed with Red Hat redhatrelease key
        oval oval:com.redhat.rhsa:tst:20080485005
rhsa
id RHSA-2008:0485
released 2008-05-20
severity Low
title RHSA-2008:0485: compiz security update (Low)
rpms
  • compiz-0:0.0.13-0.37.20060817git.el5
  • compiz-devel-0:0.0.13-0.37.20060817git.el5
refmap via4
bid 26188
confirm
fedora
  • FEDORA-2008-0930
  • FEDORA-2008-0956
secunia
  • 27381
  • 28627
  • 30329
  • 30715
suse SUSE-SA:2008:027
ubuntu
  • USN-537-1
  • USN-537-2
xf gnomescreensaver-compiz-security-bypass(37410)
statements via4
contributor Joshua Bressers
lastmodified 2008-05-21
organization Red Hat
statement This issue affected Red Hat Enterprise Linux 5 with a low security impact. An update to the compiz package was released to correct this issue: https://rhn.redhat.com/errata/RHSA-2008-0485.html
Last major update 21-08-2010 - 01:09
Published 29-10-2007 - 17:46
Last modified 28-09-2017 - 21:29
Back to Top