CVE-2009-3746
Solaris 10 - Unprotected User Data Exposure via XScreenSaver Popup Windows
Title source: llmDescription
XScreenSaver in Sun Solaris 10, when the accessibility feature is enabled, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed even when the screen is locked, a different vulnerability than CVE-2009-1276 and CVE-2009-2711.
References (3)
Core 3
Core References
Patch, Vendor Advisory x_refsource_confirm
http://sunsolve.sun.com/search/document.do?assetkey=1-21-120094-29-1
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6644
Patch, Vendor Advisory vendor-advisory
x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-66-268288-1
Scores
EPSS
0.0005
EPSS Percentile
15.9%
Details
CWE
CWE-16
Status
published
Products (1)
sun/solaris
10 (2 CPE variants)
Published
Oct 22, 2009
Tracked Since
Feb 18, 2026