Xscreensaver » Xscreensaver : Security Vulnerabilities, CVEs, (Bypass)
XScreenSaver 4.10, when using a remote directory service for credentials, does not properly handle the results from the getpwuid function in drivers/lock.c when there is no network connectivity, which causes XScreenSaver to crash and unlock the screen and allows local users to bypass authentication.
Max CVSS
4.6
EPSS Score
0.04%
Published
2007-05-02
Updated
2017-10-11
1 vulnerabilities found