Test ID:	1.3.6.1.4.1.25623.1.0.63668
Category:	Fedora Local Security Checks
Title:	Fedora Core 10 FEDORA-2009-2986 (compiz-fusion)
Summary:	The remote host is missing an update to compiz-fusion;announced via advisory FEDORA-2009-2986.;Note: This VT has been deprecated and is therefore no longer functional.
Description:	Summary: The remote host is missing an update to compiz-fusion announced via advisory FEDORA-2009-2986. Note: This VT has been deprecated and is therefore no longer functional. Vulnerability Insight: Update Information: This update fixes a security issue in the expo plugin which allows local users with physical access to drag the screen saver aside and access the locked desktop by using Expo mouse shortcuts. ChangeLog: * Tue Mar 24 2009 Adel Gadllah 0.7.8-4 - Add fix for RH #491918, CVE-2008-6514 * Sat Mar 14 2009 Adel Gadllah 0.7.8-3 - Backport upstream fix for RH #474741 Solution: Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update compiz-fusion' at the command line. CVSS Score: 6.2 CVSS Vector: AV:L/AC:H/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2008-6514 BugTraq ID: 32712 http://www.securityfocus.com/bid/32712 https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00860.html https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00878.html https://bugs.launchpad.net/ubuntu/+source/compiz-fusion-plugins-main/+bug/247088 http://secunia.com/advisories/33077 http://secunia.com/advisories/34465 XForce ISS Database: compizfusion-expo-security-bypass(47172) https://exchange.xforce.ibmcloud.com/vulnerabilities/47172
Copyright	Copyright (C) 2009 E-Soft Inc.

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.