CVE-2009-4641

medium

Description

gnome-screensaver 2.28.0 does not resume adherence to its activation settings after an inhibiting application becomes unavailable on the session bus, which allows physically proximate attackers to access an unattended workstation on which screen locking had been intended.

References

https://launchpad.net/bugs/411350

https://bugzilla.gnome.org/show_bug.cgi?id=600488

http://www.ubuntu.com/usn/USN-866-1

http://www.mandriva.com/security/advisories?name=MDVSA-2010:040

Details

Source: Mitre, NVD

Published: 2010-02-11

Updated: 2010-07-07

Risk Information

CVSS v2

Base Score: 7.2

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 4.6

Vector: CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Severity: Medium