Lucene search

[email protected]NVD:CVE-2009-4996

HistorySep 07, 2010 - 6:00 p.m.

CVE-2009-4996

2010-09-0718:00:01

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.2

Confidence

Low

EPSS

0.001

Percentile

27.5%

JSON

Xfce4-session 4.5.91 in Xfce does not lock the screen when the suspend or hibernate button is pressed, which might make it easier for physically proximate attackers to access an unattended laptop via a resume action, a related issue to CVE-2010-2532. NOTE: there is no general agreement that this is a vulnerability, because separate control over locking can be an equally secure, or more secure, behavior in some threat environments

Affected configurations

Nvd

Node

xfcexfceMatch4.6beta1

VendorProductVersionCPE
xfcexfce4.6cpe:2.3:a:xfce:xfce:4.6:beta1:*:*:*:*:*:*

Vendor	Product	Version	CPE
xfce	xfce	4.6	cpe:2.3:a:xfce:xfce:4.6:beta1::::::

References

bugzilla.xfce.org/show_bug.cgi?id=4805

bugzilla.redhat.com/show_bug.cgi?id=525395

bugzilla.redhat.com/show_bug.cgi?id=587633

bugzilla.redhat.com/show_bug.cgi?id=614608

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.2

Confidence

Low

EPSS

0.001

Percentile

27.5%

JSON

Related for NVD:CVE-2009-4996

prion3 ubuntucve4 cve4 cvelist4 debiancve3 nvd3 nessus1