CVE-2010-0285

EUVD-2010-0316
gnome-screensaver 2.14.3, 2.22.2, 2.27.x, 2.28.0, and 2.28.3, when the X configuration enables the extend screen option, allows physically proximate attackers to bypass screen locking, access an unattended workstation, and view half of the GNOME desktop by attaching an external monitor.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.6 UNKNOWN
LOCAL
HIGH
AV:L/AC:H/Au:N/C:C/I:C/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 24%
Affected Products (NVD)
VendorProductVersion
gnomescreensaver
2.14.3
gnomescreensaver
2.22.2
gnomescreensaver
2.27
gnomescreensaver
2.28.0
gnomescreensaver
2.28.3
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
gnome-screensaver
bookworm
3.6.1-13
fixed
bullseye
3.6.1-13
fixed
lenny
no-dsa
sid
3.6.1-13
fixed
trixie
3.6.1-13
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
gnome-screensaver
dapper
ignored
hardy
not-affected
intrepid
Fixed 2.24.0-0ubuntu2.1
released
jaunty
Fixed 2.24.0-0ubuntu6.1
released
karmic
Fixed 2.28.0-0ubuntu3.5
released
References
http://git.gnome.org/browse/gnome-screensaver/commit/?id=2f597ea9f1f363277fd4dfc109fa41bbc6225aca
http://security-tracker.debian.org/tracker/CVE-2010-0285
http://www.mandriva.com/security/advisories?name=MDVSA-2011:093
http://www.securityfocus.com/bid/38254
https://bugzilla.gnome.org/show_bug.cgi?id=593616
https://bugzilla.redhat.com/show_bug.cgi?id=557525
https://exchange.xforce.ibmcloud.com/vulnerabilities/56366
http://git.gnome.org/browse/gnome-screensaver/commit/?id=2f597ea9f1f363277fd4dfc109fa41bbc6225aca
http://security-tracker.debian.org/tracker/CVE-2010-0285
http://www.mandriva.com/security/advisories?name=MDVSA-2011:093
http://www.securityfocus.com/bid/38254
https://bugzilla.gnome.org/show_bug.cgi?id=593616
https://bugzilla.redhat.com/show_bug.cgi?id=557525
https://exchange.xforce.ibmcloud.com/vulnerabilities/56366