CVE-2008-1356

MEDIUM

Description

Unspecified vulnerability in xscreensaver in Sun Solaris 10 Java Desktop System (JDS), when using the GNOME On-Screen Keyboard (GOK), allows local users to bypass authentication via unknown vectors that cause the screen saver to crash.

References

http://secunia.com/advisories/29368

http://sunsolve.sun.com/search/document.do?assetkey=1-26-234661-1

http://www.securityfocus.com/bid/28243

http://www.securitytracker.com/id?1019614

http://www.vupen.com/english/advisories/2008/0875/references

https://exchange.xforce.ibmcloud.com/vulnerabilities/41191

Details

Source: MITRE

Published: 2008-03-17

Updated: 2017-08-08

Type: CWE-287

Risk Information

CVSS v2.0

Base Score: 6.3

Vector: (AV:L/AC:M/Au:N/C:N/I:C/A:C)

Impact Score: 9.2

Exploitability Score: 3.4

Severity: MEDIUM