Cristian Ciupitu

2 exploits Active since May 2014
CVE-2013-4426 WRITEUP WRITEUP
pyxtrlock < 0.1 - Lock Screen Bypass via Authentication Crash
pyxtrlock before 0.1 uses an incorrect variable name, which allows physically proximate attackers to bypass the lock screen via multiple failed authentication attempts, which trigger a crash.
CVE-2013-4427 WRITEUP WRITEUP
pyxtrlock < 0.2 - Unauthenticated Screen Lock Bypass via XCB Grab Function Return Value Mismanagement
pyxtrlock before 0.2 does not properly check the return values of the (1) xcb_grab_pointer and (2) xcb_grab_keyboard XCB library functions, which allows physically proximate attackers to gain access to the keyboard or mouse without unlocking the screen via unspecified vectors.