Lucene search

UbuntuUSN-866-1

HistoryDec 07, 2009 - 12:00 a.m.

gnome-screensaver vulnerability

2009-12-0700:00:00

ubuntu.com

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.2 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

25.2%

JSON

Releases

Ubuntu 9.10

Packages

gnome-screensaver -

Details

It was discovered that gnome-screensaver did not always re-enable itself
after applications requested it to ignore idle timers. This may result in the
screen not being automatically locked after the inactivity timeout is
reached, permitting an attacker with physical access to gain access to an
unlocked session.

OSVersionArchitecturePackageVersionFilename
Ubuntu9.10noarchgnome-screensaver< 2.28.0-0ubuntu3.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	9.10	noarch	gnome-screensaver	< 2.28.0-0ubuntu3.1	UNKNOWN

References

ubuntu.com/security/CVE-2009-4641

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.2 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

25.2%

JSON

Related for USN-866-1