CVE-2009-2711
OpenSolaris - Unauthorized Exposure of Sensitive Information via Popup Windows
Title source: llmDescription
XScreenSaver in Sun Solaris 9 and 10, OpenSolaris before snv_120, and X11 6.4.1 for Solaris 8, when the Xorg or Xnewt server is used, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed even when the screen is locked, a different vulnerability than CVE-2009-1276.
References (6)
Core 6
Core References
Vendor Advisory vendor-advisory
x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1020463.1-1
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/36170
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5838
Patch, Vendor Advisory vendor-advisory
x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-66-258928-1
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/35964
Patch, Vendor Advisory x_refsource_confirm
http://sunsolve.sun.com/search/document.do?assetkey=1-21-115298-02-1
Scores
EPSS
0.0007
EPSS Percentile
21.3%
Details
CWE
CWE-200
Status
published
Products (50)
sun/opensolaris
snv_01
sun/opensolaris
snv_02
sun/opensolaris
snv_03
sun/opensolaris
snv_04
sun/opensolaris
snv_05
sun/opensolaris
snv_06
sun/opensolaris
snv_07
sun/opensolaris
snv_08
sun/opensolaris
snv_09
sun/opensolaris
snv_10
... and 40 more
Published
Aug 07, 2009
Tracked Since
Feb 18, 2026