Vulnerability CVE-2008-6514
Published: 2009-03-24   Modified: 2012-02-12

Description:
The Expo plugin in Compiz Fusion 0.7.8 allows local users with physical access to drag the screen saver aside and access the locked desktop by using Expo mouse shortcuts, a related issue to CVE-2007-3920.

CVSS2 => (AV:L/AC:H/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
6.2/10
10/10
1.9/10
Exploit range
Attack complexity
Authentication
Local
High
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Compiz -> Compiz fusion 

 References:
http://bugzilla.gnome.org/show_bug.cgi?id=561567
http://gitweb.compiz-fusion.org/?p=fusion/plugins/expo;a=commit;h=f97a9fa6f0ad578f674d1f248bd7bef90e3260e0
http://www.securityfocus.com/bid/32712
https://bugs.launchpad.net/ubuntu/+source/compiz-fusion-plugins-main/+bug/247088
https://exchange.xforce.ibmcloud.com/vulnerabilities/47172
https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00860.html
https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00878.html
Copyright 2024, cxsecurity.com

 

Back to Top