Lucene search

[email protected]CVE-2006-1335

HistoryMar 21, 2006 - 1:06 a.m.

CVE-2006-1335

2006-03-2101:06:00

[email protected]

web.nvd.nist.gov

cve-2006-1335

gnome screensaver

x server

security vulnerability

session access

nvd

3.7 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:P/I:P/A:P

6.3 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

57.3%

JSON

gnome screensaver before 2.14, when running on an X server with AllowDeactivateGrabs and AllowClosedownGrabs enabled, allows attackers with physical access to cause the screensaver to crash and access the session via the Ctl+Alt+Keypad-Multiply keyboard sequence, which removes the grab from gnome.

Affected configurations

NVD

Node

gnomescreensaverRange≤2.13

CPENameOperatorVersion
gnome:screensavergnome screensaverle2.13

CPE	Name	Operator	Version
gnome:screensaver	gnome screensaver	le	2.13

References

bugzilla.gnome.org/show_bug.cgi?id=326663

secunia.com/advisories/19280

www.osvdb.org/24015

exchange.xforce.ibmcloud.com/vulnerabilities/25340

3.7 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:P/I:P/A:P

6.3 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

57.3%

JSON

Related for CVE-2006-1335

prion1 cvelist1 nvd1 ubuntucve1 debiancve1