Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1335

Overview

Vulnerability Score 3.7 3.7
CVE Id CVE-2006-1335
Last Modified 05 Sep 2008 05:01:38
Published 20 Mar 2006 08:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2006-1335

Summary

gnome screensaver before 2.14, when running on an X server with AllowDeactivateGrabs and AllowClosedownGrabs enabled, allows attackers with physical access to cause the screensaver to crash and access the session via the Ctl+Alt+Keypad-Multiply keyboard sequence, which removes the grab from gnome.

Vulnerable Systems

Application

  • Gnome Screensaver 2.13


References

XF - gnomescreensaver-security-bypass(25340)

OSVDB - 24015

SECUNIA - 19280

CONFIRM - http://bugzilla.gnome.org/show_bug.cgi?id=326663


Last Updated: 27 May 2016 10:42:02