Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2007:0322
HistoryMay 02, 2007 - 12:00 a.m.

(RHSA-2007:0322) Important: xscreensaver security update

2007-05-0200:00:00
access.redhat.com
9

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

8.6%

JSON

XScreenSaver is a collection of screensavers.

Alex Yamauchi discovered a flaw in the way XScreenSaver verifies user
passwords. When a system is using a remote directory service for login
credentials, a local attacker may be able to cause a network outage causing
XScreenSaver to crash, unlocking the screen. (CVE-2007-1859)

Users of XScreenSaver should upgrade to this updated package, which
contains a backported patch to correct this issue.

OSVersionArchitecturePackageVersionFilename
RedHatanyia64xscreensaver< 4.18-5.rhel4.14xscreensaver-4.18-5.rhel4.14.ia64.rpm
RedHatanyia64xscreensaver< 3.33-4.rhel21.5xscreensaver-3.33-4.rhel21.5.ia64.rpm
RedHat3x86_64xscreensaver< 4.10-21.el3xscreensaver-4.10-21.el3.x86_64.rpm
RedHatanyi386xscreensaver< 3.33-4.rhel21.5xscreensaver-3.33-4.rhel21.5.i386.rpm
RedHat3s390xscreensaver< 4.10-21.el3xscreensaver-4.10-21.el3.s390.rpm
RedHat3ppcxscreensaver< 4.10-21.el3xscreensaver-4.10-21.el3.ppc.rpm
RedHatanys390xxscreensaver< 4.18-5.rhel4.14xscreensaver-4.18-5.rhel4.14.s390x.rpm
RedHatanys390xscreensaver< 4.18-5.rhel4.14xscreensaver-4.18-5.rhel4.14.s390.rpm
RedHat3i386xscreensaver< 4.10-21.el3xscreensaver-4.10-21.el3.i386.rpm
RedHatanyppcxscreensaver< 4.18-5.rhel4.14xscreensaver-4.18-5.rhel4.14.ppc.rpm
Rows per page:
1-10 of 141

Related

nessus 12
openvas 8
centos 2
ubuntu 1
gentoo 1
prion 2
oraclelinux 1
securityvulns 2
cve 1
veracode 1
cvelist 2
ubuntucve 2
debiancve 2
nessus
nessus
Scientific Linux Security Update : xscreensaver on SL4 i386/x86_64
2012-08-01 00:00:00
SuSE 10 Security Update : xscreensaver (ZYPP Patch Number 3241)
2007-12-13 00:00:00
Scientific Linux Security Update : xscreensaver on SL3.0.x i386/x86_64
2012-08-01 00:00:00
openvas
openvas
Mandriva Update for xscreensaver MDKSA-2007:097 (xscreensaver)
2009-04-09 00:00:00
Ubuntu: Security Advisory (USN-474-1)
2009-03-23 00:00:00
Gentoo Security Advisory GLSA 200705-14 (xscreensaver)
2008-09-24 00:00:00
centos
centos
xscreensaver security update
2007-05-02 16:47:42
xscreensaver security update
2007-05-03 23:03:02
ubuntu
ubuntu
xscreensaver vulnerability
2007-06-12 00:00:00
gentoo
gentoo
XScreenSaver: Privilege escalation
2007-05-13 00:00:00
prion
prion
Authentication flaw
2007-05-02 20:19:00
Sql injection
2008-04-06 23:44:00
oraclelinux
oraclelinux
Important: xscreensaver security update
2007-05-08 00:00:00
securityvulns
securityvulns
[ MDKSA-2007:097 ] - Updated xscreensaver packages fix vulnerability
2007-05-04 00:00:00
xscreensaver console access protection bypass
2007-05-04 00:00:00
cve
cve
CVE-2007-1859
2007-05-02 20:19:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:15:32
cvelist
cvelist
CVE-2007-1859
2007-05-02 20:00:00
CVE-2008-0887
2008-04-06 23:00:00
ubuntucve
ubuntucve
CVE-2007-1859
2007-05-02 00:00:00
CVE-2008-0887
2008-04-06 00:00:00
debiancve
debiancve
CVE-2007-1859
2007-05-02 20:19:00
CVE-2008-0887
2008-04-06 23:44:00

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

8.6%

JSON
Related for RHSA-2007:0322
nessus12openvas8centos2ubuntu1gentoo1prion2oraclelinux1securityvulns2cve1veracode1cvelist2ubuntucve2debiancve2