CVE-2009-3746

LOW

Description

XScreenSaver in Sun Solaris 10, when the accessibility feature is enabled, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed even when the screen is locked, a different vulnerability than CVE-2009-1276 and CVE-2009-2711.

References

http://sunsolve.sun.com/search/document.do?assetkey=1-21-120094-29-1

http://sunsolve.sun.com/search/document.do?assetkey=1-66-268288-1

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6644

Details

Source: MITRE

Published: 2009-10-22

Updated: 2017-09-19

Type: CWE-16

Risk Information

CVSS v2.0

Base Score: 1.9

Vector: AV:L/AC:M/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 3.4

Severity: LOW