5.4

CVE-2004-2655

rdesktop 1.3.1 with xscreensaver 4.14, and possibly other versions, when running on Fedora and possibly other platforms, does not release the keyboard focus when xscreensaver starts, which causes the password to be entered into the active window when the user unlocks the screen.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
XscreensaverXscreensaver Version4.14
XscreensaverXscreensaver Version4.16
XscreensaverXscreensaver Version4.17
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.29% 0.81
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.4 4.9 6.9
AV:N/AC:H/Au:N/C:C/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
ftp://patches.sgi.com/support/free/security/advisories/20060602-01-U.asc
http://secunia.com/advisories/20226
http://secunia.com/advisories/20456
http://secunia.com/advisories/20782
http://support.avaya.com/elmodocs2/security/ASA-2006-107.htm
http://www.redhat.com/support/errata/RHSA-2006-0498.html
http://secunia.com/advisories/22080
http://securitytracker.com/id?1016150
http://securitytracker.com/id?1016151
http://www.derkeiler.com/Newsgroups/comp.os.linux.security/2004-08/0018.html
http://www.jwz.org/xscreensaver/changelog.html
http://www.mandriva.com/security/advisories?name=MDKSA-2006:071
http://www.novell.com/linux/security/advisories/2006_23_sr.html
http://www.securityfocus.com/bid/17471
Patch
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=188149
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10096
https://usn.ubuntu.com/269-1/