CVE-2009-2711

Sažetak

XScreenSaver in Sun Solaris 9 and 10, OpenSolaris before snv_120, and X11 6.4.1 for Solaris 8, when the Xorg or Xnewt server is used, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed even when the screen is locked, a different vulnerability than CVE-2009-1276.

Reference

http://secunia.com/advisories/36170
http://sunsolve.sun.com/search/document.do?assetkey=1-21-115298-02-1
http://sunsolve.sun.com/search/document.do?assetkey=1-66-258928-1
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1020463.1-1
http://www.securityfocus.com/bid/35964
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5838

CVSS

Base:	4.9
Impact:	6.9
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	NONE	NONE

CVSS vektor

AV:L/AC:L/Au:N/C:C/I:N/A:N

Zadnje važnije ažuriranje

19-09-2017 - 01:29

Objavljeno

07-08-2009 - 19:00