CVE-2010-0285

gnome-screensaver 2.14.3, 2.22.2, 2.27.x, 2.28.0, and 2.28.3, when the X configuration enables the extend screen option, allows physically proximate attackers to bypass screen locking, access an unattended workstation, and view half of the GNOME desktop by attaching an external monitor.

Published: Feb 24, 2010
Updated: Apr 13, 2023
CVE: CVE-2010-0285
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5.6
AV:L/AC:H/Au:N/C:C/I:C/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
gnome / screensaver	2.22.2	2.22.2.x
gnome / screensaver	2.28.3	2.28.3.x
gnome / screensaver	2.28.0	2.28.0.x
gnome / screensaver	2.27	2.27.x
gnome / screensaver	2.14.3	2.14.3.x

http://git.gnome.org/browse/gnome-screensaver/commit/?id=2f597ea9f1f363277fd4dfc109fa41bbc6225aca
http://security-tracker.debian.org/tracker/CVE-2010-0285
http://www.mandriva.com/security/advisories?name=MDVSA-2011:093
http://www.securityfocus.com/bid/38254
https://bugzilla.gnome.org/show_bug.cgi?id=593616
https://bugzilla.redhat.com/show_bug.cgi?id=557525
https://exchange.xforce.ibmcloud.com/vulnerabilities/56366

Vulnerability Database

289,697

CVE-2010-0285