Vulnerability Description
Unspecified vulnerability in xscreensaver in Sun Solaris 10, and OpenSolaris before snv_112, when Xorg or Xnewt is used and RandR is enabled, allows physically proximate attackers to read a locked screen via unknown vectors related to XRandR resize events.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sun | Opensolaris | <= snv_111 |
| Sun | Solaris | 10 |
References
- http://osvdb.org/58278
- http://secunia.com/advisories/36830Vendor Advisory
- http://sunsolve.sun.com/search/document.do?assetkey=1-21-120094-26-1PatchVendor Advisory
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-249646-1PatchVendor Advisory
- http://www.securityfocus.com/bid/36488Patch
- http://www.securitytracker.com/id?1022936
- http://www.vupen.com/english/advisories/2009/2728
- https://exchange.xforce.ibmcloud.com/vulnerabilities/53424
- http://osvdb.org/58278
- http://secunia.com/advisories/36830Vendor Advisory
- http://sunsolve.sun.com/search/document.do?assetkey=1-21-120094-26-1PatchVendor Advisory
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-249646-1PatchVendor Advisory
- http://www.securityfocus.com/bid/36488Patch
- http://www.securitytracker.com/id?1022936
- http://www.vupen.com/english/advisories/2009/2728
FAQ
What is CVE-2009-3432?
CVE-2009-3432 is a vulnerability with a CVSS score of 1.9 (LOW). Unspecified vulnerability in xscreensaver in Sun Solaris 10, and OpenSolaris before snv_112, when Xorg or Xnewt is used and RandR is enabled, allows physically proximate attackers to read a locked scr...
How severe is CVE-2009-3432?
CVE-2009-3432 has been rated LOW with a CVSS base score of 1.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-3432?
Check the references section above for vendor advisories and patch information. Affected products include: Sun Opensolaris, Sun Solaris.