CVE-2009-3101Opensolaris vulnerability

CWE-3994 documents4 sources
Severity
4.9MEDIUMNVD
EPSS
0.0%
top 88.38%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
SUN Opensolaris
Timeline
PublishedSep 8
Latest updateMay 2

Description

xscreensaver (aka Gnome-XScreenSaver) in Sun Solaris 10, and OpenSolaris snv_109 through snv_122, does not properly handle Trusted Extensions, which allows local users to cause a denial of service (CPU consumption and console hang) by locking the screen, related to a regression in certain Solaris and OpenSolaris patches.

CVSS vector

AV:L/AC:L/C:N/I:N/A:CExploitability: 3.9 | Impact: 6.9

Affected Packages1 packages

NVDsun/opensolaris23 versions+22

🔴Vulnerability Details

2
GHSA
GHSA-vj7x-rvh3-72c5: xscreensaver (aka Gnome-XScreenSaver) in Sun Solaris 10, and OpenSolaris snv_109 through snv_122, does not properly handle Trusted Extensions, which a2022-05-02
CVEList
CVE-2009-3101: xscreensaver (aka Gnome-XScreenSaver) in Sun Solaris 10, and OpenSolaris snv_109 through snv_122, does not properly handle Trusted Extensions, which a2009-09-08

📋Vendor Advisories

1
Debian
CVE-2009-3101: xscreensaver - xscreensaver (aka Gnome-XScreenSaver) in Sun Solaris 10, and OpenSolaris snv_109...2009
CVE-2009-3101 — SUN Opensolaris vulnerability | cvebase