CyberSec.Space Logo
Back to CVE Browser

CVE-2009-4642

HIGH
7.2
CVSS Severity Score
EPSS Score0.1670%
EPSS Percentile32.02th
PublishedFeb 11, 2010
Last ModifiedApr 29, 2026

Vulnerability Description

gnome-screensaver 2.26.1 relies on the gnome-session D-Bus interface to determine session idle time, even when an Xfce desktop such as Xubuntu or Mythbuntu is used, which allows physically proximate attackers to access an unattended workstation on which screen locking had been intended.

Affected Platforms (CPE)

πŸ“¦
Gnome

Screensaver

= 2.26.1

References & Advisories

πŸ”— http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=536381
πŸ”— http://bugzilla.xfce.org/show_bug.cgi?id=5927
πŸ”— https://bugzilla.gnome.org/show_bug.cgi?id=592093
πŸ”— https://launchpad.net/bugs/411350
πŸ”— https://launchpad.net/bugs/493573
πŸ”— http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=536381
πŸ”— http://bugzilla.xfce.org/show_bug.cgi?id=5927
πŸ”— https://bugzilla.gnome.org/show_bug.cgi?id=592093

Related Vulnerabilities

CVE-2013-08108.1

Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, and Windows Server 2008 SP2 allow remote attackers t...

CVE-2017-21767.8

Untrusted search path vulnerability in screensaver installers (jasdf_01.exe, jasdf_02.exe, jasdf_03.exe, jasdf_04.exe, jasdf_05.ex...

CVE-2006-38877.5

Buffer overflow in AOL You've Got Pictures (YGP) Screensaver ActiveX control allows remote attackers to execute arbitrary code via...

CVE-2002-19337.2

The terminal services screensaver for Microsoft Windows 2000 does not automatically lock the terminal window if the window is mini...