ID |
CVE-2010-0285
|
Summary |
gnome-screensaver 2.14.3, 2.22.2, 2.27.x, 2.28.0, and 2.28.3, when the X configuration enables the extend screen option, allows physically proximate attackers to bypass screen locking, access an unattended workstation, and view half of the GNOME desktop by attaching an external monitor. |
References |
|
Vulnerable Configurations |
-
cpe:2.3:a:gnome:screensaver:2.14.3:*:*:*:*:*:*:*
cpe:2.3:a:gnome:screensaver:2.14.3:*:*:*:*:*:*:*
-
cpe:2.3:a:gnome:screensaver:2.22.2:*:*:*:*:*:*:*
cpe:2.3:a:gnome:screensaver:2.22.2:*:*:*:*:*:*:*
-
cpe:2.3:a:gnome:screensaver:2.27:*:*:*:*:*:*:*
cpe:2.3:a:gnome:screensaver:2.27:*:*:*:*:*:*:*
-
cpe:2.3:a:gnome:screensaver:2.28.0:*:*:*:*:*:*:*
cpe:2.3:a:gnome:screensaver:2.28.0:*:*:*:*:*:*:*
-
cpe:2.3:a:gnome:screensaver:2.28.3:*:*:*:*:*:*:*
cpe:2.3:a:gnome:screensaver:2.28.3:*:*:*:*:*:*:*
|
CVSS |
Base: | 5.6 (as of 17-08-2017 - 01:31) |
Impact: | |
Exploitability: | |
|
CWE |
NVD-CWE-Other |
CAPEC |
|
Access |
Vector | Complexity | Authentication |
LOCAL |
HIGH |
NONE |
|
Impact |
Confidentiality | Integrity | Availability |
COMPLETE |
COMPLETE |
NONE |
|
cvss-vector
via4
|
AV:L/AC:H/Au:N/C:C/I:C/A:N
|
refmap
via4
|
bid | 38254 | confirm | | mandriva | MDVSA-2011:093 | xf | screensaver-monitor-setup-sec-bypass(56366) |
|
Last major update |
17-08-2017 - 01:31 |
Published |
24-02-2010 - 18:30 |
Last modified |
17-08-2017 - 01:31 |