Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.2
CVSSv2

CVE-2010-0732

Published: 19/03/2010 Updated: 03/08/2023
CVSS v2 Base Score: 6.2 | Impact Score: 10 | Exploitability Score: 1.9
VMScore: 552
Vector: AV:L/AC:H/Au:N/C:C/I:C/A:C
Subscribe to Gtk

Vulnerability Summary

gdk/gdkwindow.c in GTK+ prior to 2.18.5, as used in gnome-screensaver prior to 2.28.1, performs implicit paints on windows of type GDK_WINDOW_FOREIGN, which triggers an X error in certain circumstances and consequently allows physically proximate malicious users to bypass screen locking and access an unattended workstation by pressing the Enter key many times.

Vulnerable Product Search on Vulmon Subscribe to Product

gnome gtk

gnome screensaver

References

CWE-362http://www.openwall.com/lists/oss-security/2010/03/16/9http://git.gnome.org/browse/gtk+/commit/?id=0748cf563d0d0d03001a62589f13be16a8ec06c1http://git.gnome.org/browse/gnome-screensaver/commit/?id=ab08cc93f2dc6223c8c00bfa1ca4f2d89069dbe0https://bugzilla.redhat.com/show_bug.cgi?id=565527http://ftp.gnome.org/pub/gnome/sources/gtk+/2.18/gtk+-2.18.5.newshttps://bugzilla.gnome.org/show_bug.cgi?id=598476http://www.heise.de/newsticker/meldung/Gnome-Bildschirmsperre-in-OpenSuse-Linux-wirkungslos-2-Update-928580.htmlhttp://www.openwall.com/lists/oss-security/2010/03/05/2http://git.gnome.org/browse/gnome-screensaver/commit/?h=gnome-2-28&id=98f8a22412cf388217fd5b88915eadd274d68520https://bugs.edge.launchpad.net/ubuntu/+source/gnome-screensaver/+bug/446395http://www.openwall.com/lists/oss-security/2010/02/12/1http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.htmlhttp://secunia.com/advisories/39317http://www.securityfocus.com/bid/38211http://www.mandriva.com/security/advisories?name=MDVSA-2010:109https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761command injectionCVE-2024-3676IDORCVE-2024-30039CVE-2024-32113CVE-2024-30049CVE-2024-4776SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook