Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-3048

5 documents5 sources
Severity
7.2HIGH
EPSS
0.3%
top 46.00%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
GNU Screen
Timeline
PublishedJun 5
Latest updateMay 1

Description

GNU screen 4.0.3 allows local users to unlock the screen via a CTRL-C sequence at the password prompt. NOTE: multiple third parties report inability to reproduce this issue

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

NVDgnu/screen4.0.3

🔴Vulnerability Details

2
GHSA
GHSA-6g78-xjg6-m9rm: ** DISPUTED ** GNU screen 42022-05-01
CVEList
CVE-2007-3048: GNU screen 42007-06-05

💥Exploits & PoCs

1
Exploit-DB
Screen 4.0.3 (OpenBSD) - Local Authentication Bypass2008-06-18

📋Vendor Advisories

1
Debian
CVE-2007-3048: screen - GNU screen 4.0.3 allows local users to unlock the screen via a CTRL-C sequence a...2007
CVE-2007-3048 (HIGH CVSS 7.2) | GNU screen 4.0.3 allows local users | cvebase.io