CyberSec.Space Logo
CVEブラウザに戻る

CVE-2009-4642

HIGH
7.2
CVSS Severity Score
EPSS Score0.1670%
EPSS Percentile32.02th
Published2010年2月11日
Last Modified2026年4月29日

Vulnerability Description

gnome-screensaver 2.26.1 relies on the gnome-session D-Bus interface to determine session idle time, even when an Xfce desktop such as Xubuntu or Mythbuntu is used, which allows physically proximate attackers to access an unattended workstation on which screen locking had been intended.

Affected Platforms (CPE)

📦
Gnome

Screensaver

= 2.26.1

References & Advisories

🔗 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=536381
🔗 http://bugzilla.xfce.org/show_bug.cgi?id=5927
🔗 https://bugzilla.gnome.org/show_bug.cgi?id=592093
🔗 https://launchpad.net/bugs/411350
🔗 https://launchpad.net/bugs/493573
🔗 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=536381
🔗 http://bugzilla.xfce.org/show_bug.cgi?id=5927
🔗 https://bugzilla.gnome.org/show_bug.cgi?id=592093

関連する脆弱性情報

CVE-2013-08108.1

Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, and Windows Server 2008 SP2 allow remote attackers t...

CVE-2017-21767.8

Untrusted search path vulnerability in screensaver installers (jasdf_01.exe, jasdf_02.exe, jasdf_03.exe, jasdf_04.exe, jasdf_05.ex...

CVE-2006-38877.5

Buffer overflow in AOL You've Got Pictures (YGP) Screensaver ActiveX control allows remote attackers to execute arbitrary code via...

CVE-2002-19337.2

The terminal services screensaver for Microsoft Windows 2000 does not automatically lock the terminal window if the window is mini...