CVE-2009-1276

Sažetak

XScreenSaver in Sun Solaris 10 and OpenSolaris before snv_109, and Solaris 8 and 9 with GNOME 2.0 or 2.0.2, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed even when the screen is locked, as demonstrated by Thunderbird new-mail notifications.

Reference

http://securitytracker.com/id?1022009
http://sunsolve.sun.com/search/document.do?assetkey=1-21-120094-22-1
http://sunsolve.sun.com/search/document.do?assetkey=1-66-255308-1
http://www.securityfocus.com/bid/34421
http://www.vupen.com/english/advisories/2009/0978

CVSS

Base:	2.1
Impact:	2.9
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:L/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

11-08-2009 - 04:00

Objavljeno

09-04-2009 - 15:08