xscreensaver before 5.14 crashes during activation and leaves the screen unlocked when in Blank Only Mode and when DPMS is disabled, which allows local attackers to access resources without authentication.
References
Link | Resource |
---|---|
https://access.redhat.com/security/cve/cve-2011-2187 | Third Party Advisory |
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=627382 | Exploit Third Party Advisory |
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-2187 | Exploit Issue Tracking Third Party Advisory |
https://security-tracker.debian.org/tracker/CVE-2011-2187 | Third Party Advisory |
https://www.jwz.org/xscreensaver/changelog.html | Release Notes Vendor Advisory |
https://www.openwall.com/lists/oss-security/2011/06/06/17 | Mailing List Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2019-11-27T17:28:08
Updated: 2019-11-27T17:28:08
Reserved: 2011-05-31T00:00:00
Link: CVE-2011-2187
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-11-27T18:15:10.927
Modified: 2020-08-18T15:05:58.063
Link: CVE-2011-2187
JSON object: View
Redhat Information
No data.
CWE