Local Authentication Bypass in GNU Screen 4.0.3 by GNU
CVE-2007-3048

Currently unrated

Key Information:

Vendor: Gnu
Status: Screen
Vendor: CVE Published:; 5 June 2007

What is CVE-2007-3048?

A local authentication bypass vulnerability exists in GNU Screen version 4.0.3, where users can potentially bypass the screen unlock mechanism by using a CTRL-C sequence at the password prompt. Despite reports from multiple third-party sources noting their inability to reproduce the issue, the vulnerability raises concerns about the security measures in place to restrict unauthorized access to sessions.

References

http://lists.grok.org.uk/pipermail/full-disclosure/2007-J...

mailing-listx_refsource_FULLDISC

https://exchange.xforce.ibmcloud.com/vulnerabilities/34693

vdb-entryx_refsource_XF

http://lists.grok.org.uk/pipermail/full-disclosure/2007-J...

mailing-listx_refsource_FULLDISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 5, 2007
Vulnerability Reserved
Jun 5, 2007

Gnu

What is CVE-2007-3048?

References

Timeline