Vulnerabilities > CVE-2006-1335 - Denial-Of-Service vulnerability in Screensaver

CVSS 3.7 - LOW

Attack vector

LOCAL

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

high complexity

gnome

NVD

Published: 2006-03-21

Updated: 2017-07-20

Summary

gnome screensaver before 2.14, when running on an X server with AllowDeactivateGrabs and AllowClosedownGrabs enabled, allows attackers with physical access to cause the screensaver to crash and access the session via the Ctl+Alt+Keypad-Multiply keyboard sequence, which removes the grab from gnome. The vulnerability has reportedly been fixed in version 2.14.

Vulnerable Configurations

Part	Description	Count
Application	Gnome Gnome Screensaver *	1

References

http://bugzilla.gnome.org/show_bug.cgi?id=326663
http://secunia.com/advisories/19280
http://www.osvdb.org/24015
https://exchange.xforce.ibmcloud.com/vulnerabilities/25340