4.7 - GLSA-200804-12

Executive Summary

Summary
Title	gnome-screensaver: Privilege escalation

Informations
Name	GLSA-200804-12	First vendor Publication	2008-04-11
Vendor	Gentoo	Last vendor Modification	2008-04-11
Severity (Vendor)	Normal	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:M/Au:N/C:N/I:N/A:C)
Cvss Base Score	4.7	Attack Range	Local
Cvss Impact Score	6.9	Attack Complexity	Medium
Cvss Expoit Score	3.4	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Synopsis

gnome-screensaver allows local users to bypass authentication under certain configurations.

Background

gnome-screensaver is a screensaver, designed to integrate with the Gnome desktop, that can replace xscreensaver.

Description

gnome-screensaver incorrectly handles the results of the getpwuid()
function in the file src/setuid.c when using directory servers (like NIS) during a network outage, a similar issue to GLSA 200705-14.

Impact

A local user can crash gnome-xscreensaver by preventing network connectivity if the system uses a remote directory service for credentials such as NIS or LDAP, which will unlock the screen.

Workaround

There is no known workaround at this time.

Resolution

All gnome-screensaver users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=gnome-extra/gnome-screensaver-2.20.0-r3"

References

[ 1 ] CVE-2008-0887 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0887
[ 2 ] GLSA 200705-14 : http://www.gentoo.org/security/en/glsa/glsa-200705-14.xml

Availability

This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

http://security.gentoo.org/glsa/glsa-200804-12.xml

Original Source

Url : http://security.gentoo.org/glsa/glsa-200804-12.xml

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:10813

Oval ID:	oval:org.mitre.oval:def:10813
Title:	gnome-screensaver before 2.22.1, when a remote authentication server is enabled, crashes upon an unlock attempt during a network outage, which allows physically proximate attackers to gain access to the locked session, a related issue to CVE-2007-1859.
Description:	gnome-screensaver before 2.22.1, when a remote authentication server is enabled, crashes upon an unlock attempt during a network outage, which allows physically proximate attackers to gain access to the locked session, a related issue to CVE-2007-1859.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2008-0887	Version:	5
Platform(s):	Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND gnome-screensaver is earlier than 0:2.16.1-8.el5

Definition Id: oval:org.mitre.oval:def:17707

Oval ID:	oval:org.mitre.oval:def:17707
Title:	USN-669-1 -- gnome-screensaver vulnerabilities
Description:	It was discovered that the notify feature in gnome-screensaver could let a local attacker read the clipboard contents of a locked session by using Ctrl-V.
Family:	unix	Class:	patch
Reference(s):	USN-669-1 CVE-2007-6389 CVE-2008-0887	Version:	7
Platform(s):	Ubuntu 6.06 Ubuntu 7.10	Product(s):	gnome-screensaver
Definition Synopsis:
Release section Ubuntu 6.06 is installed AND gnome-screensaver DPKG is earlier than 2.14.3-0ubuntu1.1 AND Release section Ubuntu 7.10 is installed AND gnome-screensaver DPKG is earlier than 2.20.0-0ubuntu4.3

Definition Id: oval:org.mitre.oval:def:21852

Oval ID:	oval:org.mitre.oval:def:21852
Title:	ELSA-2008:0218: gnome-screensaver security update (Moderate)
Description:	gnome-screensaver before 2.22.1, when a remote authentication server is enabled, crashes upon an unlock attempt during a network outage, which allows physically proximate attackers to gain access to the locked session, a related issue to CVE-2007-1859.
Family:	unix	Class:	patch
Reference(s):	ELSA-2008:0218-01 CVE-2008-0887	Version:	6
Platform(s):	Oracle Linux 5	Product(s):	gnome-screensaver
Definition Synopsis:
Oracle Linux 5.x AND gnome-screensaver is earlier than 0:2.16.1-8.el5

Definition Id: oval:org.mitre.oval:def:22162

Oval ID:	oval:org.mitre.oval:def:22162
Title:	ELSA-2008:0197: gnome-screensaver security update (Moderate)
Description:	gnome-screensaver before 2.22.1, when a remote authentication server is enabled, crashes upon an unlock attempt during a network outage, which allows physically proximate attackers to gain access to the locked session, a related issue to CVE-2007-1859.
Family:	unix	Class:	patch
Reference(s):	ELSA-2008:0197-01 CVE-2008-0887	Version:	6
Platform(s):	Oracle Linux 5	Product(s):	gnome-screensaver
Definition Synopsis:
Oracle Linux 5.x AND gnome-screensaver is earlier than 0:2.16.1-5.el5_1.1

CPE : Common Platform Enumeration

Type	Description	Count
Application	Gnome Screensaver cpe:2.3:a:gnome:screensaver:2.20.0:::::::* cpe:2.3:a:gnome:screensaver:2.20:::::::* cpe:2.3:a:gnome:screensaver:2.14.3:::::::* cpe:2.3:a:gnome:screensaver:2.13:::::::* cpe:2.3:a:gnome:screensaver::::::::	5

OpenVAS Exploits

Date	Description
2009-10-13	Name : SLES10: Security update for xscreensaver File : nvt/sles10_xscreensaver.nasl
2009-10-10	Name : SLES9: Security update for xscreensaver File : nvt/sles9p5031340.nasl
2009-04-09	Name : Mandriva Update for gnome-screensaver MDVSA-2008:132 (gnome-screensaver) File : nvt/gb_mandriva_MDVSA_2008_132.nasl
2009-03-23	Name : Ubuntu Update for gnome-screensaver vulnerabilities USN-669-1 File : nvt/gb_ubuntu_USN_669_1.nasl
2009-03-06	Name : RedHat Update for gnome-screensaver RHSA-2008:0197-01 File : nvt/gb_RHSA-2008_0197-01_gnome-screensaver.nasl
2009-03-06	Name : RedHat Update for gnome-screensaver RHSA-2008:0218-01 File : nvt/gb_RHSA-2008_0218-01_gnome-screensaver.nasl
2009-02-17	Name : Fedora Update for gnome-screensaver FEDORA-2008-3017 File : nvt/gb_fedora_2008_3017_gnome-screensaver_fc8.nasl
2009-02-16	Name : Fedora Update for gnome-screensaver FEDORA-2008-2967 File : nvt/gb_fedora_2008_2967_gnome-screensaver_fc7.nasl
2008-09-24	Name : Gentoo Security Advisory GLSA 200804-12 (gnome-screensaver) File : nvt/glsa_200804_12.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
43986	gnome-screensaver NIS Authentication Method Screen Lock Bypass

Nessus® Vulnerability Scanner

Date	Description
2013-07-12	Name : The remote Oracle Linux host is missing a security update. File : oraclelinux_ELSA-2008-0197.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing a security update. File : sl_20080402_gnome_screensaver_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2010-01-06	Name : The remote CentOS host is missing a security update. File : centos_RHSA-2008-0197.nasl - Type : ACT_GATHER_INFO
2009-09-24	Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_12174.nasl - Type : ACT_GATHER_INFO
2009-04-23	Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-669-1.nasl - Type : ACT_GATHER_INFO
2009-04-23	Name : The remote Mandriva Linux host is missing a security update. File : mandriva_MDVSA-2008-132.nasl - Type : ACT_GATHER_INFO
2008-07-28	Name : The remote openSUSE host is missing a security update. File : suse_xscreensaver-5333.nasl - Type : ACT_GATHER_INFO
2008-07-28	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_xscreensaver-5334.nasl - Type : ACT_GATHER_INFO
2008-06-26	Name : The remote openSUSE host is missing a security update. File : suse_gnome-screensaver-5172.nasl - Type : ACT_GATHER_INFO
2008-06-24	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_gnome-screensaver-5179.nasl - Type : ACT_GATHER_INFO
2008-06-18	Name : The remote openSUSE host is missing a security update. File : suse_gnome-screensaver-5175.nasl - Type : ACT_GATHER_INFO
2008-05-22	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2008-0218.nasl - Type : ACT_GATHER_INFO
2008-04-17	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200804-12.nasl - Type : ACT_GATHER_INFO
2008-04-11	Name : The remote Fedora host is missing a security update. File : fedora_2008-3017.nasl - Type : ACT_GATHER_INFO
2008-04-11	Name : The remote Fedora host is missing a security update. File : fedora_2008-2967.nasl - Type : ACT_GATHER_INFO
2008-04-04	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2008-0197.nasl - Type : ACT_GATHER_INFO
2007-11-10	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-474-1.nasl - Type : ACT_GATHER_INFO
2007-05-03	Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2007-097.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 11:35:44	Multiple Updates

Global Informations

Type	Count
Oval ID(s)	4
CPE ID(s)	5
osvdb(s)	1
Openvas Exploit(s)	9
Nessus® Exploit(s)	18

	Related
4.7	CVE-2008-0887
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 1 more Alert(s)

4.7 - GLSA-200804-12

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

OVAL Definitions

CPE : Common Platform Enumeration

OpenVAS Exploits

Open Source Vulnerability Database (OSVDB)

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU