GNOME ScreenSaver Lock Bypass Vulnerability

Summary

The ‘gnome-screensaver’ screensaver is prone to a vulnerability that allows an attacker who has physical console access to bypass the user’s locked screen.

Credit:

The original article can be found at: http://www.securityfocus.com/bid/54810
The information has been provided by Kurt Seifried .


Details

Vulnerable Systems:
 *GNOME ScreenSaver Lock Bypass Vulnerability

An attacker with physical access to the desktop may be able to bypass the desktop-locking screensaver on dual-monitor. This may grant the attacker access to another desktop screens which is permanently unlocked and usable.GNOME gnome-screensaver 3.4.2 is vulnerable. .

Vendor Status:
Vendor as issued an updated vulnerability.

Patch Availability:
http://www.gnome.org/gnome-3/

CVE Information:
CVE-2012-2022

Disclosure Timeline:
Initial Release: Published: Aug 06 2012

Categories: News