CVE-2007-3920

Name of the Vulnerable Software and Affected Versions GNOME screensaver version 2.20 xorg-x11-Xvnc (affected versions not specified) xorg-x11-Xvfb (affected versions not specified) xorg-x11-server (affected versions not specified) xorg-x11-Xnest (affected versions not specified)

Description The issue allows attackers to take control of a session after entering an Alt-Tab sequence, due to improper reservation of input focus. Multiple vulnerabilities in the xorg-x11 packages of SUSE Linux Enterprise may lead to disruption of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely.

Recommendations For GNOME screensaver version 2.20, consider disabling the Alt-Tab sequence as a temporary workaround until a patch is available. For xorg-x11-Xvnc, restrict access to the package to minimize the risk of exploitation. For xorg-x11-Xvfb, avoid using the package until the issue is resolved. For xorg-x11-server, consider disabling remote access to the server as a temporary mitigation measure. For xorg-x11-Xnest, restrict access to the package to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.