Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2006:0498
HistoryMay 23, 2006 - 12:00 a.m.

(RHSA-2006:0498) xscreensaver security update

2006-05-2300:00:00
access.redhat.com
9

5.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:C/I:N/A:N

0.012 Low

EPSS

Percentile

83.6%

JSON

XScreenSaver is a collection of screensavers.

A keyboard focus flaw was found in the way XScreenSaver prompts the user to
enter their password to unlock the screen. XScreenSaver did not properly
ensure it had proper keyboard focus, which could leak a users password to
the program with keyboard focus. This behavior is not common, as only certain
applications exhibit this focus error. (CVE-2004-2655)

Several flaws were found in the way various XScreenSaver screensavers
create temporary files. It may be possible for a local attacker to create a
temporary file in way that could overwrite a different file to which the user
running XScreenSaver has write permissions. (CVE-2003-1294)

Users of XScreenSaver should upgrade to this updated package, which
contains backported patches to correct these issues.

Related

centos 2
nessus 3
cve 2
debiancve 2
ubuntucve 1
ubuntu 1
openvas 2
centos
centos
xscreensaver security update
2006-05-24 01:13:53
xscreensaver security update
2006-05-23 21:39:54
nessus
nessus
CentOS 3 : xscreensaver (CESA-2006:0498)
2006-07-03 00:00:00
RHEL 2.1 / 3 : xscreensaver (RHSA-2006:0498)
2006-05-24 00:00:00
Ubuntu 4.10 / 5.04 : xscreensaver vulnerability (USN-269-1)
2006-04-12 00:00:00
cve
cve
CVE-2003-1294
2003-12-31 05:00:00
CVE-2004-2655
2004-12-31 05:00:00
debiancve
debiancve
CVE-2003-1294
2003-12-31 05:00:00
CVE-2004-2655
2004-12-31 05:00:00
ubuntucve
ubuntucve
CVE-2004-2655
2004-12-31 00:00:00
ubuntu
ubuntu
xscreensaver vulnerability
2006-04-11 00:00:00
openvas
openvas
SLES9: Security update for xscreensaver
2009-10-10 00:00:00
SLES9: Security update for xscreensaver
2009-10-10 00:00:00

5.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:C/I:N/A:N

0.012 Low

EPSS

Percentile

83.6%

JSON
Related for RHSA-2006:0498
centos2nessus3cve2debiancve2ubuntucve1ubuntu1openvas2