CVE-2010-0414

EUVD-2010-0445
gnome-screensaver before 2.28.2 allows physically proximate attackers to bypass screen locking and access an unattended workstation by moving the mouse position to an external monitor and then disconnecting that monitor.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.2 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 16%
Affected Products (NVD)
VendorProductVersion
gnomescreensaver
𝑥
≤ 2.28.1
gnomescreensaver
2.13
gnomescreensaver
2.20
gnomescreensaver
2.20.0
gnomescreensaver
2.26.1
gnomescreensaver
2.28.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
gnome-screensaver
bookworm
3.6.1-13
fixed
bullseye
3.6.1-13
fixed
etch
not-affected
lenny
not-affected
sid
3.6.1-13
fixed
trixie
3.6.1-13
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
gnome-screensaver
dapper
ignored
hardy
not-affected
intrepid
not-affected
jaunty
not-affected
karmic
Fixed 2.28.0-0ubuntu3.4
released
References
http://ftp.gnome.org/pub/GNOME/sources/gnome-screensaver/2.28/gnome-screensaver-2.28.2.news
http://git.gnome.org/browse/gnome-screensaver/commit/?id=a5f66339be6719c2b8fc478a1d5fc6545297d950
http://git.gnome.org/browse/gnome-screensaver/commit/?id=dcca89b7ab6e1220815af38da246434b2e13fd9f
http://lists.fedoraproject.org/pipermail/package-announce/2010-February/034904.html
http://secunia.com/advisories/38468
http://secunia.com/advisories/38532
http://secunia.com/advisories/38534
http://www.mandriva.com/security/advisories?name=MDVSA-2010:040
http://www.osvdb.org/62219
http://www.securityfocus.com/bid/38149
http://www.ubuntu.com/usn/USN-898-1
https://bugzilla.gnome.org/show_bug.cgi?id=609337
https://bugzilla.redhat.com/show_bug.cgi?id=562217
http://ftp.gnome.org/pub/GNOME/sources/gnome-screensaver/2.28/gnome-screensaver-2.28.2.news
http://git.gnome.org/browse/gnome-screensaver/commit/?id=a5f66339be6719c2b8fc478a1d5fc6545297d950
http://git.gnome.org/browse/gnome-screensaver/commit/?id=dcca89b7ab6e1220815af38da246434b2e13fd9f
http://lists.fedoraproject.org/pipermail/package-announce/2010-February/034904.html
http://secunia.com/advisories/38468
http://secunia.com/advisories/38532
http://secunia.com/advisories/38534
http://www.mandriva.com/security/advisories?name=MDVSA-2010:040
http://www.osvdb.org/62219
http://www.securityfocus.com/bid/38149
http://www.ubuntu.com/usn/USN-898-1
https://bugzilla.gnome.org/show_bug.cgi?id=609337
https://bugzilla.redhat.com/show_bug.cgi?id=562217