CVE-2009-1276
OpenSolaris < snv_109 - Unauthorized Sensitive Information Exposure via Popup Windows
Title source: llmDescription
XScreenSaver in Sun Solaris 10 and OpenSolaris before snv_109, and Solaris 8 and 9 with GNOME 2.0 or 2.0.2, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed even when the screen is locked, as demonstrated by Thunderbird new-mail notifications.
References (5)
Core 5
Core References
Patch, Vendor Advisory x_refsource_confirm
http://sunsolve.sun.com/search/document.do?assetkey=1-21-120094-22-1
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2009/0978
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1022009
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/34421
Patch, Vendor Advisory vendor-advisory
x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-66-255308-1
Scores
EPSS
0.0006
EPSS Percentile
18.1%
Details
CWE
CWE-200
Status
published
Products (50)
sun/opensolaris
snv_01
sun/opensolaris
snv_02
sun/opensolaris
snv_03
sun/opensolaris
snv_04
sun/opensolaris
snv_05
sun/opensolaris
snv_06
sun/opensolaris
snv_07
sun/opensolaris
snv_08
sun/opensolaris
snv_09
sun/opensolaris
snv_10
... and 40 more
Published
Apr 09, 2009
Tracked Since
Feb 18, 2026