CVE-2009-3101

xscreensaver (aka Gnome-XScreenSaver) in Sun Solaris 10, and OpenSolaris snv_109 through snv_122, does not properly handle Trusted Extensions, which allows local users to cause a denial of service (CPU consumption and console hang) by locking the screen, related to a regression in certain Solaris and OpenSolaris patches.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.9 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:N/I:N/A:C
mitreCNA
---
---
CVEADP
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 13%
Debian logo
Debian Releases
Debian Product
Codename
xscreensaver
bullseye
5.45+dfsg1-2
fixed
bookworm
6.06+dfsg1-3+deb12u1
fixed
sid
6.08+dfsg1-1
fixed
trixie
6.08+dfsg1-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
xscreensaver
jaunty
not-affected
intrepid
not-affected
hardy
not-affected
dapper
not-affected
Common Weakness Enumeration
References
http://bugs.opensolaris.org/view_bug.do?bug_id=6839026
http://sunsolve.sun.com/search/document.do?assetkey=1-66-266469-1
http://bugs.opensolaris.org/view_bug.do?bug_id=6839026
http://sunsolve.sun.com/search/document.do?assetkey=1-66-266469-1