63 matches found
CVE-2009-4642
The vulnerability CVE-2009-4642 affects gnome-screensaver 2.26.1, which relies on the gnome-session D-Bus interface to determine session idle time. This occurs even on Xfce environments (e.g., Xubuntu/Mythbuntu), enabling physically proximate attackers to access an unattended workstation where sc...
OpenSC: Insufficient protection of smart card PIN
Background OpenSC is a smart card application that allows reading and writing via PKCS11. Description Chaskiel M Grundman reported that OpenSC uses weak permissions ADMIN file control information of 00 for the 5015 directory on smart cards and USB crypto tokens running Siemens CardOS M4. Impact A...
CVE-2008-2314
CVE-2008-2314 affects Apple Mac OS X 10.5 before 10.5.4 where, if Exposé hot corners are enabled, a physically proximate attacker can access a locked session in sleep or screen saver mode without entering a password. This is a local access vulnerability, not clearly described as exploitable via a...