CVE-2009-1276

XScreenSaver in Sun Solaris 10 and OpenSolaris before snv_109, and Solaris 8 and 9 with GNOME 2.0 or 2.0.2, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed even when the screen is locked, as demonstrated by Thunderbird new-mail notifications.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
2.1 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N
mitreCNA
---
---
CVEADP
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 20%
Common Weakness Enumeration
References
http://securitytracker.com/id?1022009
http://sunsolve.sun.com/search/document.do?assetkey=1-21-120094-22-1
http://sunsolve.sun.com/search/document.do?assetkey=1-66-255308-1
http://www.securityfocus.com/bid/34421
http://www.vupen.com/english/advisories/2009/0978
http://securitytracker.com/id?1022009
http://sunsolve.sun.com/search/document.do?assetkey=1-21-120094-22-1
http://sunsolve.sun.com/search/document.do?assetkey=1-66-255308-1
http://www.securityfocus.com/bid/34421
http://www.vupen.com/english/advisories/2009/0978