PT-2010-2079 · Gnome · Gnome-Screensaver
Vincent Danen
·
Published
2010-02-24
·
Updated
2017-08-17
·
CVE-2010-0285
CVSS v2.0
5.6
Medium
| Vector | AV:L/AC:H/Au:N/C:C/I:C/A:N |
Name of the Vulnerable Software and Affected Versions
gnome-screensaver versions 2.14.3 through 2.28.3
Description
The issue allows physically proximate attackers to bypass screen locking and access an unattended workstation when the X configuration enables the extend screen option. This enables the attacker to view half of the GNOME desktop by attaching an external monitor.
Recommendations
For gnome-screensaver versions 2.14.3 through 2.28.3, consider disabling the extend screen option in the X configuration as a temporary workaround to prevent exploitation.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Gnome-Screensaver