Bypassing Screen Lock on GNOME Screensaver by Moving Mouse to External Monitor
CVE-2010-0414

Currently unrated

Key Information:

Vendor: Gnome
Status: Screensaver
Vendor: CVE Published:; 11 February 2010

Summary

The gnome-screensaver prior to version 2.28.2 presents a vulnerability that enables physically proximate attackers to bypass screen locking mechanisms. This occurs when the attacker moves the mouse cursor to an external monitor and subsequently disconnects that monitor, granting access to an unattended workstation. This security flaw opens the door for unauthorized access, posing a significant risk to sensitive information on systems utilizing this screensaver.

References

http://secunia.com/advisories/38468

third-party-advisoryx_refsource_SECUNIA

http://www.osvdb.org/62219

vdb-entryx_refsource_OSVDB

http://www.securityfocus.com/bid/38149

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Feb 11, 2010
Vulnerability Reserved
Jan 27, 2010