PT-2014-5144 · Canonical · Unity
Frederic Bardy
·
Published
2014-04-29
·
Updated
2014-05-07
·
CVE-2014-3204
CVSS v2.0
4.4
Medium
| Vector | AV:L/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Unity versions prior to 7.2.1
Description
The issue allows physically proximate attackers to bypass the lock screen and execute arbitrary commands. This can be achieved by right-clicking on the indicator bar and then pressing the ALT and F2 keys, due to improper handling of keyboard shortcuts.
Recommendations
For Unity versions prior to 7.2.1, update to version 7.2.1 or later to resolve the issue.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Unity