• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

OpenBSD GNU Screen Locked Authentication Bypass Vulnerability

GNU Screen for OpenBSD is prone to a vulnerability that allows local attackers to bypass the password prompt to unlock the screen.

An attacker with local physical access to the console can exploit this issue to bypass the password prompt and gain access to the locked screen session.

The issue affects GNU Screen 4.0.3 for OpenBSD 4.3; other versions may also be vulnerable.