CVE-2009-4641

gnome-screensaver 2.28.0 does not resume adherence to its activation settings after an inhibiting application becomes unavailable on the session bus, which allows physically proximate attackers to access an unattended workstation on which screen locking had been intended.

Published: Feb 11, 2010
Updated: Apr 13, 2023
CVE: CVE-2009-4641
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
gnome / screensaver	2.28.0	2.28.0.x

http://www.mandriva.com/security/advisories?name=MDVSA-2010:040
http://www.ubuntu.com/usn/USN-866-1
https://bugzilla.gnome.org/show_bug.cgi?id=600488
https://launchpad.net/bugs/411350

Vulnerability Database

289,697

CVE-2009-4641