Lucene search
RootSSV:3579HistoryJul 09, 2008 - 12:00 a.m.
Gnome屏保程序本地信息泄露漏洞
2008-07-0900:00:00
Root
www.seebug.org
16
0.0004 Low
EPSS
Percentile
8.6%
BUGTRAQ ID: 30096
CVE(CAN) ID: CVE-2007-6389
gnome-screensaver是用于取代xscreensaver的屏保程序。
当登录用户返回并打开锁定的会话时,gnome-screensaver的Leave message功能会向该用户发送一条消息。这时如果本地攻击者执行了Ctrl+V操作的话,就可以读取X选择和剪贴板缓冲区的敏感信息。
GNOME gnome-screensaver 2.20
GNOME
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
<a href=“http://live.gnome.org/GnomeScreensaver/” target=“_blank”>http://live.gnome.org/GnomeScreensaver/</a>
Related
fedora
fedora
[SECURITY] Fedora 7 Update: gnome-screensaver-2.18.2-3.fc7
2008-04-01 21:34:10
[SECURITY] Fedora 8 Update: gnome-screensaver-2.20.0-11.fc8
2008-04-01 21:39:04
[SECURITY] Fedora 7 Update: gnome-screensaver-2.18.2-4.fc7
2008-04-09 05:19:33
prion
prion
Design/Logic Flaw
2007-12-17 18:46:00
ubuntucve
ubuntucve
CVE-2007-6389
2007-12-17 00:00:00
openvas
openvas
Fedora Update for gnome-screensaver FEDORA-2008-2818
2009-02-16 00:00:00
Fedora Update for gnome-screensaver FEDORA-2008-2872
2009-02-16 00:00:00
Mandriva Update for gnome-screensaver MDVSA-2008:135 (gnome-screensaver)
2009-04-09 00:00:00
nessus
nessus
Fedora 8 : gnome-screensaver-2.20.0-11.fc8 (2008-2872)
2008-04-04 00:00:00
openSUSE 10 Security Update : gnome-screensaver (gnome-screensaver-5506)
2008-08-15 00:00:00
Fedora 7 : gnome-screensaver-2.18.2-3.fc7 (2008-2818)
2008-04-04 00:00:00
cve
cve
CVE-2007-6389
2007-12-17 18:46:00
seebug
seebug
Gnome Screensaver本地信息泄漏漏洞
2008-07-08 00:00:00
debiancve
debiancve
CVE-2007-6389
2007-12-17 18:46:00
ubuntu
ubuntu
gnome-screensaver vulnerabilities
2008-11-11 00:00:00
suse
suse
remote code execution in openwsman
2008-08-14 18:02:43