CVE Vulnerabilities

CVE-2014-3204

Published: May 06, 2014 | Modified: May 07, 2014
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.4 MEDIUM
AV:L/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu
MEDIUM

Unity before 7.2.1, as used in Ubuntu 14.04, does not properly handle keyboard shortcuts, which allows physically proximate attackers to bypass the lock screen and execute arbitrary commands, as demonstrated by right-clicking on the indicator bar and then pressing the ALT and F2 keys.

Affected Software

Name Vendor Start Version End Version
Unity Ayatana_project * 7.2.0 (including)
Unity Ayatana_project 7.0.0 (including) 7.0.0 (including)
Unity Ayatana_project 7.0.1 (including) 7.0.1 (including)
Unity Ayatana_project 7.1.0 (including) 7.1.0 (including)
Unity Ayatana_project 7.1.1 (including) 7.1.1 (including)
Unity Ayatana_project 7.1.2 (including) 7.1.2 (including)
Unity Ayatana_project 7.1.3 (including) 7.1.3 (including)
Ubuntu_linux Canonical 14.04 (including) 14.04 (including)
Unity Ubuntu trusty *

References