CVE-2009-3101

Name of the Vulnerable Software and Affected Versions: xscreensaver (aka Gnome-XScreenSaver) in Sun Solaris 10 OpenSolaris versions snv 109 through snv 122

Description: The issue is related to improper handling of Trusted Extensions, allowing local users to cause a denial of service by locking the screen. This results in CPU consumption and console hang, and is related to a regression in certain Solaris and OpenSolaris patches.

Recommendations: For xscreensaver (aka Gnome-XScreenSaver) in Sun Solaris 10, consider disabling the screen locking feature to prevent denial of service attacks. For OpenSolaris versions snv 109 through snv 122, restrict access to the screen locking functionality to minimize the risk of exploitation.