Lucene search
PRIOn knowledge basePRION:CVE-2016-10894HistoryAug 16, 2019 - 3:15 a.m.
Design/Logic Flaw
2019-08-1603:15:00
PRIOn knowledge base
www.prio-n.com
1
xtrlock through 2.10 does not block multitouch events. Consequently, an attacker at a locked screen can send input to (and thus control) various programs such as Chromium via events such as pan scrolling, “pinch and zoom” gestures, or even regular mouse clicks (by depressing the touchpad once and then clicking with a different finger).
| CPE | Name | Operator | Version |
|---|---|---|---|
| debian_linux | eq | 8.0 | |
| xtrlock | le | 2.10 |
Related
nessus
nessus
Debian DLA-1959-1 : xtrlock security update
2019-10-15 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-1959-1)
2019-10-15 00:00:00
nvd
nvd
CVE-2016-10894
2019-08-16 03:15:11
ubuntucve
ubuntucve
CVE-2016-10894
2019-08-16 00:00:00
debian
debian
[SECURITY] [DLA 1959-1] xtrlock security update
2019-10-14 20:49:20
debiancve
debiancve
CVE-2016-10894
2019-08-16 03:15:11
freebsd
freebsd
xtrlock -- xtrlock does not block multitouch events
2016-07-10 00:00:00
osv
osv
xtrlock - security update
2019-10-14 00:00:00
cvelist
cvelist
CVE-2016-10894
2019-08-16 03:00:37
cve
cve
CVE-2016-10894
2019-08-16 03:15:11