Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-4427

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2013-4427
Last Modified 19 May 2014 02:11:30
Published 19 May 2014 10:55:07
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2013-4427

Summary

pyxtrlock before 0.2 does not properly check the return values of the (1) xcb_grab_pointer and (2) xcb_grab_keyboard XCB library functions, which allows physically proximate attackers to gain access to the keyboard or mouse without unlocking the screen via unspecified vectors.

Vulnerable Systems

Application

  • Leon Weber Pyxtrlock 0.1


References

CONFIRM - https://github.com/leonnnn/pyxtrlock/blob/master/CHANGELOG

MLIST - [oss-security] 20131015 Re: Re: CVE request: pyxtrlock

MLIST - [oss-security] 20130925 CVE request: pyxtrlock


Last Updated: 27 May 2016 11:05:18