Vulnerability Description
gnome-screensaver before 2.28.2 allows physically proximate attackers to bypass screen locking and access an unattended workstation by moving the mouse position to an external monitor and then disconnecting that monitor.
CVSS Score
7.2
HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Gnome | Screensaver | <= 2.28.1 |
References
- http://ftp.gnome.org/pub/GNOME/sources/gnome-screensaver/2.28/gnome-screensaver-
- http://git.gnome.org/browse/gnome-screensaver/commit/?id=a5f66339be6719c2b8fc478
- http://git.gnome.org/browse/gnome-screensaver/commit/?id=dcca89b7ab6e1220815af38
- http://lists.fedoraproject.org/pipermail/package-announce/2010-February/034904.h
- http://secunia.com/advisories/38468Vendor Advisory
- http://secunia.com/advisories/38532
- http://secunia.com/advisories/38534Vendor Advisory
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:040
- http://www.osvdb.org/62219
- http://www.securityfocus.com/bid/38149
- http://www.ubuntu.com/usn/USN-898-1
- https://bugzilla.gnome.org/show_bug.cgi?id=609337
- https://bugzilla.redhat.com/show_bug.cgi?id=562217
- http://ftp.gnome.org/pub/GNOME/sources/gnome-screensaver/2.28/gnome-screensaver-
- http://git.gnome.org/browse/gnome-screensaver/commit/?id=a5f66339be6719c2b8fc478
FAQ
What is CVE-2010-0414?
CVE-2010-0414 is a vulnerability with a CVSS score of 7.2 (HIGH). gnome-screensaver before 2.28.2 allows physically proximate attackers to bypass screen locking and access an unattended workstation by moving the mouse position to an external monitor and then disconn...
How severe is CVE-2010-0414?
CVE-2010-0414 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-0414?
Check the references section above for vendor advisories and patch information. Affected products include: Gnome Screensaver.