CVE-2007-3920
6.2 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:H/Au:N/C:C/I:C/A:C
6.1 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
70.8%
GNOME screensaver 2.20 in Ubuntu 7.10, when used with Compiz, does not properly reserve input focus, which allows attackers with physical access to take control of the session after entering an Alt-Tab sequence, a related issue to CVE-2007-3069.
Affected configurations
References
lists.opensuse.org/opensuse-security-announce/2008-06/msg00002.html
secunia.com/advisories/27381
secunia.com/advisories/28627
secunia.com/advisories/30329
secunia.com/advisories/30715
www.redhat.com/support/errata/RHSA-2008-0485.html
www.securityfocus.com/bid/26188
www.ubuntu.com/usn/usn-537-1
www.ubuntu.com/usn/usn-537-2
bugzilla.redhat.com/show_bug.cgi?id=357071
bugzilla.redhat.com/show_bug.cgi?id=363061
exchange.xforce.ibmcloud.com/vulnerabilities/37410
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10192
www.redhat.com/archives/fedora-package-announce/2008-January/msg00811.html
www.redhat.com/archives/fedora-package-announce/2008-January/msg00841.html
Related
6.2 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:H/Au:N/C:C/I:C/A:C
6.1 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
70.8%