CVE-2013-7220

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-2013-7220
js/ui/screenShield.js in GNOME Shell (aka gnome-shell) before 3.8 allows physically proximate attackers to execute arbitrary commands by leveraging an unattended workstation with the keyboard focus on the Activities search.

4.6 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 3.9 / Impact : 6.4

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
https://github.com/o2platform/DefCon_RESTing/tree/master/Live-Demos/Neo4j
http://www.openwall.com/lists/oss-security/2013/12/27/4
https://bugzilla.redhat.com/show_bug.cgi?id=1030431
https://bugzilla.gnome.org/show_bug.cgi?id=686740
http://www.openwall.com/lists/oss-security/2013/12/27/6
http://www.openwall.com/lists/oss-security/2013/12/27/8
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:gnome:gnome-shell:3.7.2.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.7.2:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.7.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.6.3.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.3.92:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.3.91:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.3.90:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.3.5:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.0.0.2:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.4.0:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.7.5:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.1.4:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.7.3.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.1.92:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.1.90.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.7.4.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:*:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.7.91:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.2.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.1.91.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.5.91:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.5.4:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.3.3:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.4.2:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.6.2:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.2.0:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.6.0:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.5.3:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.5.90:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.7.4:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.1.90:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.4.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.6.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.1.3:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.5.2:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.1.91:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.6.3:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.2.2:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.7.3:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.5.92:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:gnome:gnome-shell:3.3.2:*:*:*:*:*:*:*
Information

Published : 2014-04-29 07:38

Updated : 2014-04-29 11:53

NVD link : CVE-2013-7220

Mitre link : CVE-2013-7220

JSON object : View

CWE
NVD-CWE-Other
Advertisement

dedicated server usa
Products Affected

gnome

  • gnome-shell