Lucene search

[email protected]CVE-2007-6389

HistoryDec 17, 2007 - 6:46 p.m.

CVE-2007-6389

2007-12-1718:46:00

[email protected]

web.nvd.nist.gov

gnome

screensaver

gnome-screensaver

vulnerability

local users

clipboard

x selection

data

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

5.8 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

10.3%

JSON

The notify feature in GNOME screensaver (gnome-screensaver) 2.20.0 might allow local users to read the clipboard contents and X selection data for a locked session by using ctrl-V.

Affected configurations

NVD

Node

gnomescreensaverMatch2.20

CPENameOperatorVersion
gnome:screensavergnome screensavereq2.20

CPE	Name	Operator	Version
gnome:screensaver	gnome screensaver	eq	2.20

References

bugs.debian.org/cgi-bin/bugreport.cgi?bug=455484

bugzilla.gnome.org/show_bug.cgi?id=482159

bugzilla.gnome.org/show_bug.cgi?id=503005

lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html

secunia.com/advisories/29595

secunia.com/advisories/29666

secunia.com/advisories/31687

secunia.com/advisories/32691

www.mandriva.com/security/advisories?name=MDVSA-2008:135

www.securityfocus.com/bid/30096

www.ubuntu.com/usn/USN-669-1

bugs.launchpad.net/ubuntu/+source/gnome-screensaver/+bug/146862

bugzilla.redhat.com/show_bug.cgi?id=421461

www.redhat.com/archives/fedora-package-announce/2008-April/msg00020.html

www.redhat.com/archives/fedora-package-announce/2008-April/msg00078.html

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

5.8 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

10.3%

JSON

Related for CVE-2007-6389

openvas13 nessus5 debiancve1 cvelist1 nvd1 seebug2 prion1 fedora4 ubuntucve1 ubuntu1 suse1