Vulnerability Details CVE-2013-4427
pyxtrlock before 0.2 does not properly check the return values of the (1) xcb_grab_pointer and (2) xcb_grab_keyboard XCB library functions, which allows physically proximate attackers to gain access to the keyboard or mouse without unlocking the screen via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 21.8%
CVSS Severity
CVSS v2 Score 2.1
References
- http://www.openwall.com/lists/oss-security/2013/09/25/16
- http://www.openwall.com/lists/oss-security/2013/10/16/8
- https://github.com/leonnnn/pyxtrlock/blob/master/CHANGELOG
- http://www.openwall.com/lists/oss-security/2013/09/25/16
- http://www.openwall.com/lists/oss-security/2013/10/16/8
- https://github.com/leonnnn/pyxtrlock/blob/master/CHANGELOG
Products affected by CVE-2013-4427
-
cpe:2.3:a:leon_weber:pyxtrlock:0.1