Screen Lock Bypass in gnome-screensaver by GNOME
CVE-2009-4641

Currently unrated

Key Information:

Vendor: Gnome
Status: Screensaver
Vendor: CVE Published:; 11 February 2010

What is CVE-2009-4641?

gnome-screensaver 2.28.0 fails to maintain its screen locking functionality when an inhibiting application becomes unavailable on the session bus. This flaw allows physical attackers to manipulate the system, gaining access to an unattended workstation, which could lead to unauthorized data access or modification of crucial files.

References

http://www.mandriva.com/security/advisories?name=MDVSA-20...

vendor-advisoryx_refsource_MANDRIVA

http://www.ubuntu.com/usn/USN-866-1

vendor-advisoryx_refsource_UBUNTU

https://bugzilla.gnome.org/show_bug.cgi?id=600488

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 11, 2010
Vulnerability Reserved
Feb 11, 2010

Gnome

What is CVE-2009-4641?

References

Timeline