CVE-2007-1859

Impact:
Important
Public Date:
2007-05-03
Bugzilla:
237003: CVE-2007-1859 xscreensaver authentication bypass

The MITRE CVE dictionary describes this issue as:

XScreenSaver 4.10, when using a remote directory service for credentials, does not properly handle the results from the getpwuid function in drivers/lock.c when there is no network connectivity, which causes XScreenSaver to crash and unlock the screen and allows local users to bypass authentication.

Find out more about CVE-2007-1859 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 4 (xscreensaver) RHSA-2007:0322 2007-05-02
Red Hat Enterprise Linux 2.1 (xscreensaver) RHSA-2007:0322 2007-05-02
Red Hat Enterprise Linux 3 (xscreensaver) RHSA-2007:0322 2007-05-02

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.