CVE-2004-2655
CVSS5.4
发布时间 :2004-12-31 00:00:00
修订时间 :2010-08-21 00:24:58
NMCOS    

[原文]rdesktop 1.3.1 with xscreensaver 4.14, and possibly other versions, when running on Fedora and possibly other platforms, does not release the keyboard focus when xscreensaver starts, which causes the password to be entered into the active window when the user unlocks the screen.


[CNNVD]XScreenSaver本地口令泄漏漏洞(CNNVD-200412-552)

        
        XScreenSaver是X窗口系统的一套屏保程序和屏保框架。
        XScreenSaver提示用户输入口令解锁屏幕时存在键盘焦点漏洞。XScreenSaver没有正确的保证拥有正确的键盘焦点,这可能将用户口令泄漏给有键盘焦点的程序。这种行为并不常见,因为仅有一些应用程序出现这种焦点错误。
        <*链接:http://marc.theaimsgroup.com/?l=bugtraq&m=114962062927164&w=2
         http://secunia.com/advisories/20226/print/
         http://lwn.net/Alerts/184909
        *>

- CVSS (基础分值)

CVSS分值: 5.4 [中等(MEDIUM)]
机密性影响: COMPLETE [完全的信息泄露导致所有系统文件暴露]
完整性影响: NONE [不会对系统完整性产生影响]
可用性影响: NONE [对系统可用性无影响]
攻击复杂度: HIGH [漏洞利用存在特定的访问条件]
攻击向量: [--]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

cpe:/a:xscreensaver:xscreensaver:4.17
cpe:/a:xscreensaver:xscreensaver:4.14
cpe:/a:xscreensaver:xscreensaver:4.16

- OVAL (用于检测的技术细节)

oval:org.mitre.oval:def:10096rdesktop 1.3.1 with xscreensaver 4.14, and possibly other versions, when running on Fedora and possibly other platforms, does not release th...
*OVAL详细的描述了检测该漏洞的方法,你可以从相关的OVAL定义中找到更多检测该漏洞的技术细节。

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-2655
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-2655
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200412-552
(官方数据源) CNNVD

- 其它链接及资源

http://www.ubuntulinux.org/support/documentation/usn/usn-269-1
(PATCH)  UBUNTU  USN-269-1
http://www.securityfocus.com/bid/17471
(PATCH)  BID  17471
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=188149
(UNKNOWN)  MISC  https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=188149
http://www.jwz.org/xscreensaver/changelog.html
(UNKNOWN)  CONFIRM  http://www.jwz.org/xscreensaver/changelog.html
http://www.derkeiler.com/Newsgroups/comp.os.linux.security/2004-08/0018.html
(UNKNOWN)  MISC  http://www.derkeiler.com/Newsgroups/comp.os.linux.security/2004-08/0018.html
http://www.redhat.com/support/errata/RHSA-2006-0498.html
(UNKNOWN)  REDHAT  RHSA-2006:0498
http://www.novell.com/linux/security/advisories/2006_23_sr.html
(UNKNOWN)  SUSE  SUSE-SR:2006:023
http://www.mandriva.com/security/advisories?name=MDKSA-2006:071
(UNKNOWN)  MANDRIVA  MDKSA-2006:071
http://support.avaya.com/elmodocs2/security/ASA-2006-107.htm
(UNKNOWN)  CONFIRM  http://support.avaya.com/elmodocs2/security/ASA-2006-107.htm
http://securitytracker.com/id?1016151
(UNKNOWN)  SECTRACK  1016151
http://securitytracker.com/id?1016150
(UNKNOWN)  SECTRACK  1016150
http://secunia.com/advisories/22080
(UNKNOWN)  SECUNIA  22080
http://secunia.com/advisories/20782
(UNKNOWN)  SECUNIA  20782
http://secunia.com/advisories/20456
(UNKNOWN)  SECUNIA  20456
http://secunia.com/advisories/20226
(UNKNOWN)  SECUNIA  20226
ftp://patches.sgi.com/support/free/security/advisories/20060602-01-U.asc
(UNKNOWN)  SGI  20060602-01-U

- 漏洞信息

XScreenSaver本地口令泄漏漏洞
中危 设计错误
2004-12-31 00:00:00 2010-04-02 00:00:00
远程※本地  
        
        XScreenSaver是X窗口系统的一套屏保程序和屏保框架。
        XScreenSaver提示用户输入口令解锁屏幕时存在键盘焦点漏洞。XScreenSaver没有正确的保证拥有正确的键盘焦点,这可能将用户口令泄漏给有键盘焦点的程序。这种行为并不常见,因为仅有一些应用程序出现这种焦点错误。
        <*链接:http://marc.theaimsgroup.com/?l=bugtraq&m=114962062927164&w=2
         http://secunia.com/advisories/20226/print/
         http://lwn.net/Alerts/184909
        *>

- 公告与补丁

        厂商补丁:
        RedHat
        ------
        RedHat已经为此发布了一个安全公告(RHSA-2006:0498-01)以及相应补丁:
        RHSA-2006:0498-01:Moderate: xscreensaver security update
        链接:
        http://lwn.net/Alerts/184909

        补丁下载:
        Red Hat Enterprise Linux AS (Advanced Server) version 2.1:
        SRPMS:
        ftp://updates.redhat.com/enterprise/2.1AS/en/os/SRPMS/xscreensaver-3.33-4.rhel21.3.src.rpm
        f8a3f186605e8c1e94118d560724cd0c xscreensaver-3.33-4.rhel21.3.src.rpm
        i386:
        3f48fa1db2d0c4224dd968a3a4a10033 xscreensaver-3.33-4.rhel21.3.i386.rpm
        ia64:
        dfe54c3a32cc18cd4cdf4ccfe073cba0 xscreensaver-3.33-4.rhel21.3.ia64.rpm
        Red Hat Linux Advanced Workstation 2.1:
        SRPMS:
        ftp://updates.redhat.com/enterprise/2.1AW/en/os/SRPMS/xscreensaver-3.33-4.rhel21.3.src.rpm
        f8a3f186605e8c1e94118d560724cd0c xscreensaver-3.33-4.rhel21.3.src.rpm
        ia64:
        dfe54c3a32cc18cd4cdf4ccfe073cba0 xscreensaver-3.33-4.rhel21.3.ia64.rpm
        Red Hat Enterprise Linux ES version 2.1:
        SRPMS:
        ftp://updates.redhat.com/enterprise/2.1ES/en/os/SRPMS/xscreensaver-3.33-4.rhel21.3.src.rpm
        f8a3f186605e8c1e94118d560724cd0c xscreensaver-3.33-4.rhel21.3.src.rpm
        i386:
        3f48fa1db2d0c4224dd968a3a4a10033 xscreensaver-3.33-4.rhel21.3.i386.rpm
        Red Hat Enterprise Linux WS version 2.1:
        SRPMS:
        ftp://updates.redhat.com/enterprise/2.1WS/en/os/SRPMS/xscreensaver-3.33-4.rhel21.3.src.rpm
        f8a3f186605e8c1e94118d560724cd0c xscreensaver-3.33-4.rhel21.3.src.rpm
        i386:
        3f48fa1db2d0c4224dd968a3a4a10033 xscreensaver-3.33-4.rhel21.3.i386.rpm
        Red Hat Enterprise Linux AS version 3:
        SRPMS:
        ftp://updates.redhat.com/enterprise/3AS/en/os/SRPMS/xscreensaver-4.10-20.src.rpm
        aeb44a2230e0891747e7c678e165c2b0 xscreensaver-4.10-20.src.rpm
        i386:
        32064f1c5108a2fc8d440099113a915f xscreensaver-4.10-20.i386.rpm
        c3c5cbe5a9f4dc689ba1cc8168dfda10 xscreensaver-debuginfo-4.10-20.i386.rpm
        ia64:
        ac46f647bd7930f3dcf10b74d4f8f9ec xscreensaver-4.10-20.ia64.rpm
        ebf73db97fdda4f4d65e6897050ca206 xscreensaver-debuginfo-4.10-20.ia64.rpm
        ppc:
        6023bea1b1145194a72487f7418b9c8b xscreensaver-4.10-20.ppc.rpm
        fcb479f611c9053efd9d845bcdbc7ffe xscreensaver-debuginfo-4.10-20.ppc.rpm
        s390:
        0e9f6a02afe107a9b52334eb89c0a0b1 xscreensaver-4.10-20.s390.rpm
        26f350733c38fc054ea14b3cf8f08b77 xscreensaver-debuginfo-4.10-20.s390.rpm
        s390x:
        e48435174e377c0c7b78b2f87c16aab5 xscreensaver-4.10-20.s390x.rpm
        7772d366de77b390edd9e3593b1d6d5b xscreensaver-debuginfo-4.10-20.s390x.rpm
        x86_64:
        83193c35d8ddf707af150d1e507fdc61 xscreensaver-4.10-20.x86_64.rpm
        0177ce9d9a124b43310f450212ef271a xscreensaver-debuginfo-4.10-20.x86_64.rpm
        Red Hat Desktop version 3:
        SRPMS:
        ftp://updates.redhat.com/enterprise/3desktop/en/os/SRPMS/xscreensaver-4.10-20.src.rpm
        aeb44a2230e0891747e7c678e165c2b0 xscreensaver-4.10-20.src.rpm
        i386:
        32064f1c5108a2fc8d440099113a915f xscreensaver-4.10-20.i386.rpm
        c3c5cbe5a9f4dc689ba1cc8168dfda10 xscreensaver-debuginfo-4.10-20.i386.rpm
        x86_64:
        83193c35d8ddf707af150d1e507fdc61 xscreensaver-4.10-20.x86_64.rpm
        0177ce9d9a124b43310f450212ef271a xscreensaver-debuginfo-4.10-20.x86_64.rpm
        Red Hat Enterprise Linux ES version 3:
        SRPMS:
        ftp://updates.redhat.com/enterprise/3ES/en/os/SRPMS/xscreensaver-4.10-20.src.rpm
        aeb44a2230e0891747e7c678e165c2b0 xscreensaver-4.10-20.src.rpm
        i386:
        32064f1c5108a2fc8d440099113a915f xscreensaver-4.10-20.i386.rpm
        c3c5cbe5a9f4dc689ba1cc8168dfda10 xscreensaver-debuginfo-4.10-20.i386.rpm
        ia64:
        ac46f647bd7930f3dcf10b74d4f8f9ec xscreensaver-4.10-20.ia64.rpm
        ebf73db97fdda4f4d65e6897050ca206 xscreensaver-debuginfo-4.10-20.ia64.rpm
        x86_64:
        83193c35d8ddf707af150d1e507fdc61 xscreensaver-4.10-20.x86_64.rpm
        0177ce9d9a124b43310f450212ef271a xscreensaver-debuginfo-4.10-20.x86_64.rpm
        Red Hat Enterprise Linux WS version 3:
        SRPMS:
        ftp://updates.redhat.com/enterprise/3WS/en/os/SRPMS/xscreensaver-4.10-20.src.rpm
        aeb44a2230e0891747e7c678e165c2b0 xscreensaver-4.10-20.src.rpm
        i386:
        32064f1c5108a2fc8d440099113a915f xscreensaver-4.10-20.i386.rpm
        c3c5cbe5a9f4dc689ba1cc8168dfda10 xscreensaver-debuginfo-4.10-20.i386.rpm
        ia64:
        ac46f647bd7930f3dcf10b74d4f8f9ec xscreensaver-4.10-20.ia64.rpm
        ebf73db97fdda4f4d65e6897050ca206 xscreensaver-debuginfo-4.10-20.ia64.rpm
        x86_64:
        83193c35d8ddf707af150d1e507fdc61 xscreensaver-4.10-20.x86_64.rpm
        0177ce9d9a124b43310f450212ef271a xscreensaver-debuginfo-4.10-20.x86_64.rpm
        可使用下列命令安装补丁:
        rpm -Fvh [文件名]
        Jamie Zawinski
        --------------
        目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
        
        http://www.jwz.org/xscreensaver/xscreensaver-4.24.tar.gz

- 漏洞信息

26167
XScreenSaver Keyboard Focus Weakness Cleartext Password Disclosure
Cryptographic, Information Disclosure
Loss of Confidentiality

- 漏洞描述

Unknown or Incomplete

- 时间线

2004-08-03 Unknow
Unknow Unknow

- 解决方案

Unknown or Incomplete

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

XScreenSaver Local Password Disclosure Vulnerability
Design Error 17471
Yes Yes
2006-04-11 12:00:00 2006-12-07 03:29:00
The original discoverer of this issue is currently unknown.

- 受影响的程序版本

Ubuntu Ubuntu Linux 5.0 4 powerpc
Ubuntu Ubuntu Linux 5.0 4 i386
Ubuntu Ubuntu Linux 5.0 4 amd64
Ubuntu Ubuntu Linux 4.1 ppc
Ubuntu Ubuntu Linux 4.1 ia64
Ubuntu Ubuntu Linux 4.1 ia32
SuSE SUSE Linux Enterprise Server 8
+ Linux kernel 2.4.21
+ Linux kernel 2.4.19
SGI ProPack 3.0 SP6
S.u.S.E. Novell Linux Desktop 9.0
S.u.S.E. Linux Enterprise Server for S/390 9.0
S.u.S.E. Linux Enterprise Server for S/390
S.u.S.E. Linux Enterprise Server 9
RedHat Enterprise Linux WS 3
RedHat Enterprise Linux WS 2.1 IA64
RedHat Enterprise Linux WS 2.1
RedHat Enterprise Linux ES 3
RedHat Enterprise Linux ES 2.1 IA64
RedHat Enterprise Linux ES 2.1
RedHat Desktop 3.0
RedHat Advanced Workstation for the Itanium Processor 2.1 IA64
RedHat Advanced Workstation for the Itanium Processor 2.1
Red Hat Enterprise Linux AS 3
Red Hat Enterprise Linux AS 2.1 IA64
Red Hat Enterprise Linux AS 2.1
MandrakeSoft Corporate Server 3.0 x86_64
MandrakeSoft Corporate Server 3.0
Jamie Zawinski XScreenSaver 4.17
Jamie Zawinski XScreenSaver 4.16
Jamie Zawinski XScreenSaver 4.15
Jamie Zawinski XScreenSaver 4.14
Conectiva Linux 10.0
Avaya Interactive Response 1.3
Avaya Interactive Response 1.2.1
Avaya Interactive Response
Avaya Integrated Management 2.1
Avaya Integrated Management
Avaya CVLAN
Jamie Zawinski XScreenSaver 4.18

- 不受影响的程序版本

Jamie Zawinski XScreenSaver 4.18

- 漏洞讨论

XScreenSaver is prone to a local password-disclosure vulnerability. This issue is due to a flaw in the application that may result in the screen-unlock password being passed onto other applications that are already running on the computer.

This may disclose the password used to unlock the applications. The login password is typically used to unlock XScreenSaver, so this issue may reveal login passwords to attackers.

This issue is currently known to affect users who are running RDesktop on the locked computer, due to the interaction between the applications. This may result in the disclosure of the login password across the network. Other unknown applications in conjunction with XScreenSaver may result in a similar issue.

Version 4.14 and 4.16 are vulnerable to this issue; other versions may also be affected.

- 漏洞利用

Attackers use standard applications and network sniffers to exploit this issue.

- 解决方案

The vendor has released version 4.18 of XScreenSaver to address this issue.

Please see the referenced vendor advisories for more information on obtaining and applying fixes.


Jamie Zawinski XScreenSaver 4.14

Jamie Zawinski XScreenSaver 4.16

Jamie Zawinski XScreenSaver 4.17

Jamie Zawinski XScreenSaver 4.15

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站