Just a quick post. Xorg is the graphical server that handles the desktop environment you choose for your Linux box. A pretty big flaw was found in Xorg versions 1.11 and later that allows anyone to bypass the screen lock mechanism on xscreensaver, gscreensaver, and many others.
The key combo that allows us to bypass the password protected is: ctrl + alt + *.
It's unknown whether or not this was left there intentionally, but the issue remains unresolved.
How To:
Set Up a Headless Raspberry Pi Hacking Platform Running Kali Linux
How to Hack Wi-Fi:
Capturing WPA Passwords by Targeting Users with a Fluxion Attack
How To:
4 Ways to Crack a Facebook Password & How to Protect Yourself from Them
Mac for Hackers:
How to Get Your Mac Ready for Hacking
How To:
An Intro to Vim, the Unix Text Editor Every Hacker Should Be Familiar With
How to Use PowerShell Empire:
Getting Started with Post-Exploitation of Windows Hosts
How To:
Simulate a RAT on Your Network with ShinoBOT
How To:
Set Up SoftEther VPN on Windows to Keep Your Data Secure
How to Hack Wi-Fi:
Get Anyone's Wi-Fi Password Without Cracking Using Wifiphisher
How To:
Get Unlimited Free Trials Using a "Real" Fake Credit Card Number
How To:
Crack Any Master Combination Lock in 8 Tries or Less Using This Calculator
How to Hack Wi-Fi:
Cracking WPA2-PSK Passwords Using Aircrack-Ng
How to Hack Wi-Fi:
Build a Software-Based Wi-Fi Jammer with Airgeddon
Hack Like a Pro:
How to Remotely Install a Keylogger onto Your Girlfriend's Computer
How To:
Hack Android Using Kali (Remotely)
The Hacks of Mr. Robot:
How to Spy on Anyone's Smartphone Activity
How To:
Hack Windows 7 (Become Admin)
How To:
Crack Wi-Fi Passwords with Your Android Phone and Get Free Internet!
Advice from a Real Hacker:
How to Know if You've Been Hacked
How To:
Embed a Metasploit Payload in an Original .Apk File | Part 2 – Do It Manually
How to Use PowerShell Empire:
Getting Started with Post-Exploitation of Windows Hosts
How To:
4 Ways to Crack a Facebook Password & How to Protect Yourself from Them
How To:
Simulate a RAT on Your Network with ShinoBOT
How To:
Set Up SoftEther VPN on Windows to Keep Your Data Secure
How to Hack Wi-Fi:
Get Anyone's Wi-Fi Password Without Cracking Using Wifiphisher
How To:
Get Unlimited Free Trials Using a "Real" Fake Credit Card Number
How To:
Crack Any Master Combination Lock in 8 Tries or Less Using This Calculator
How To:
Set Up a Headless Raspberry Pi Hacking Platform Running Kali Linux
How to Hack Wi-Fi:
Cracking WPA2-PSK Passwords Using Aircrack-Ng
How to Hack Wi-Fi:
Build a Software-Based Wi-Fi Jammer with Airgeddon
How to Hack Wi-Fi:
Capturing WPA Passwords by Targeting Users with a Fluxion Attack
Hack Like a Pro:
How to Remotely Install a Keylogger onto Your Girlfriend's Computer
How To:
Hack Android Using Kali (Remotely)
The Hacks of Mr. Robot:
How to Spy on Anyone's Smartphone Activity
How To:
Hack Windows 7 (Become Admin)
How To:
Crack Wi-Fi Passwords with Your Android Phone and Get Free Internet!
Advice from a Real Hacker:
How to Know if You've Been Hacked
How To:
Embed a Metasploit Payload in an Original .Apk File | Part 2 – Do It Manually
How To:
Successfully Hack a Website in 2016!
How To:
Locked Out of Your Phone? Here's How You Bypass the Android Pattern Lock Screen
6 Comments
This is pretty big, actually. They need to patch this fast.
Yeah, that means it gets around my failed password safety script :(. I have it so my HDD is wiped clean upon 3 incorrect password guesses. This kind of ruins that :/. I'm just locking the screen by going to TTY 1 and logging out. Haha. Temporary fix.
I still wont let any get near my laptop with that HDD wipe, because I might start it by accident, if this only really effects 1.11 can't you just downgrade your Xorg?
Won't that mean you will need to downgrade dependencies one by one also?
Yeah, I wouldn't bother. Just shutdown for the time being, or come up with an icky workaround.
Yes you might need to downgrade a few dependencies but if you are really worried about your security then I would recomend trying it
Share Your Thoughts