ID CVE-2010-0732
Summary gdk/gdkwindow.c in GTK+ before 2.18.5, as used in gnome-screensaver before 2.28.1, performs implicit paints on windows of type GDK_WINDOW_FOREIGN, which triggers an X error in certain circumstances and consequently allows physically proximate attackers to bypass screen locking and access an unattended workstation by pressing the Enter key many times.
References
Vulnerable Configurations
  • cpe:2.3:a:gtk:gtk%2b:2.18.4
    cpe:2.3:a:gtk:gtk%2b:2.18.4
  • cpe:2.3:a:gnome:screensaver:2.28.0
    cpe:2.3:a:gnome:screensaver:2.28.0
CVSS
Base: 6.2 (as of 22-03-2010 - 17:38)
Impact:
Exploitability:
CWE CWE-362
CAPEC
  • Leveraging Race Conditions
    This attack targets a race condition occurring when multiple processes access and manipulate the same resource concurrently and the outcome of the execution depends on the particular order in which the access takes place. The attacker can leverage a race condition by "running the race", modifying the resource and modifying the normal execution flow. For instance a race condition can occur while accessing a file, the attacker can trick the system by replacing the original file with his version and cause the system to read the malicious file.
  • Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions
    This attack targets a race condition occurring between the time of check (state) for a resource and the time of use of a resource. The typical example is the file access. The attacker can leverage a file access race condition by "running the race", meaning that he would modify the resource between the first time the target program accesses the file and the time the target program uses the file. During that period of time, the attacker could do something such as replace the file and cause an escalation of privilege.
Access
VectorComplexityAuthentication
LOCAL HIGH NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
nessus via4
  • NASL family Mandriva Local Security Checks
    NASL id MANDRIVA_MDVSA-2010-109.NASL
    description A vulnerability was discovered and fixed in gtk+2.0 : gdk/gdkwindow.c in GTK+ before 2.18.5, as used in gnome-screensaver before 2.28.1, performs implicit paints on windows of type GDK_WINDOW_FOREIGN, which triggers an X error in certain circumstances and consequently allows physically proximate attackers to bypass screen locking and access an unattended workstation by pressing the Enter key many times (CVE-2010-0732). Packages for 2008.0 and 2009.0 are provided as of the Extended Maintenance Program. Please visit this link to learn more: http://store.mandriva.com/product_info.php?cPath=149&products_id=4 90 This update fixes this issue.
    last seen 2019-02-21
    modified 2019-01-02
    plugin id 46743
    published 2010-05-28
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=46743
    title Mandriva Linux Security Advisory : gtk+2.0 (MDVSA-2010:109)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_1_GNOME-SCREENSAVER-100318.NASL
    description Pressing the 'Return' key repeatedly caused an X error that terminated gnome-screensaver (CVE-2010-0732).
    last seen 2019-02-21
    modified 2014-06-13
    plugin id 45384
    published 2010-03-31
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=45384
    title openSUSE Security Update : gnome-screensaver (gnome-screensaver-2152)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_GNOME-SCREENSAVER-100318.NASL
    description - When resuming a system, gnome-screensaver does not lock external displays that got connected while the system was suspended. (CVE-2010-0285) - Pressing the 'Return' key repeatedly caused an X error that terminated gnome-screensaver. (CVE-2010-0732)
    last seen 2019-02-21
    modified 2013-10-25
    plugin id 64151
    published 2013-01-25
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=64151
    title SuSE 11 Security Update : GNOME screensaver (SAT Patch Number 2150)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_0_GNOME-SCREENSAVER-100318.NASL
    description Pressing the 'Return' key repeatedly caused an X error that terminated gnome-screensaver (CVE-2010-0732).
    last seen 2019-02-21
    modified 2014-06-13
    plugin id 45383
    published 2010-03-31
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=45383
    title openSUSE Security Update : gnome-screensaver (gnome-screensaver-2152)
  • NASL family Gentoo Local Security Checks
    NASL id GENTOO_GLSA-201412-08.NASL
    description The remote host is affected by the vulnerability described in GLSA-201412-08 (Multiple packages, Multiple vulnerabilities fixed in 2010) Vulnerabilities have been discovered in the packages listed below. Please review the CVE identifiers in the Reference section for details. Insight Perl Tk Module Source-Navigator Tk Partimage Mlmmj acl Xinit gzip ncompress liblzw splashutils GNU M4 KDE Display Manager GTK+ KGet dvipng Beanstalk Policy Mount pam_krb5 GNU gv LFTP Uzbl Slim Bitdefender Console iputils DVBStreamer Impact : A context-dependent attacker may be able to gain escalated privileges, execute arbitrary code, cause Denial of Service, obtain sensitive information, or otherwise bypass security restrictions. Workaround : There are no known workarounds at this time.
    last seen 2019-02-21
    modified 2018-12-05
    plugin id 79961
    published 2014-12-15
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=79961
    title GLSA-201412-08 : Multiple packages, Multiple vulnerabilities fixed in 2010
refmap via4
bid 38211
confirm
mandriva MDVSA-2010:109
misc http://www.heise.de/newsticker/meldung/Gnome-Bildschirmsperre-in-OpenSuse-Linux-wirkungslos-2-Update-928580.html
mlist
  • [oss-security] 20100212 CVE Request: gnome-screensaver termination by pressing "Enter"
  • [oss-security] 20100305 Re: CVE Request: gnome-screensaver termination by pressing "Enter"
  • [oss-security] 20100316 Re: Re: CVE Request: gnome-screensaver termination by pressing "Enter"
secunia 39317
suse SUSE-SR:2010:008
Last major update 05-06-2010 - 01:32
Published 19-03-2010 - 15:30
Back to Top