Sun

Ray Server Software

15 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.4

CVE-2009-4314

  • EPSS 0.05%
  • Published 14.12.2009 17:30:00
  • Last modified 09.04.2025 00:30:58

Sun Ray Server Software 4.1 on Solaris 10, when Automatic Multi-Group Hotdesking (AMGH) is enabled, responds to a logout action by immediately logging the user in again, which makes it easier for physically proximate attackers to obtain access to a s...

10

CVE-2009-4294

  • EPSS 3.9%
  • Published 11.12.2009 16:30:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in the Authentication Manager (aka utauthd) in Sun Ray Server Software 4.0 and 4.1 allows remote attackers to execute arbitrary code or cause a denial of service via unknown vectors.

7.8

CVE-2009-4295

  • EPSS 0.37%
  • Published 11.12.2009 16:30:00
  • Last modified 09.04.2025 00:30:58

Sun Ray Server Software 4.0 and 4.1 does not generate a unique DSA private key for the firmware on each Sun Ray 1, 1g, 100, and 150 DTU device, which makes it easier for remote attackers to obtain sensitive information by predicting a key and then us...

2.1

CVE-2009-2489

  • EPSS 0.06%
  • Published 16.07.2009 16:30:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in the utdmsession program in Sun Ray Server Software (SRSS) 4.0 allows local users to access the sessions of arbitrary users via unknown vectors.

1.9

CVE-2009-2490

  • EPSS 0.06%
  • Published 16.07.2009 16:30:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in the utaudiod daemon in Sun Ray Server Software (SRSS) 4.0, when Solaris Trusted Extensions is enabled, allows local users to cause a denial of service (audio outage) or possibly gain privileges via unknown vectors related...

4.4

CVE-2009-2491

  • EPSS 0.07%
  • Published 16.07.2009 16:30:00
  • Last modified 09.04.2025 00:30:58

The utaudiod daemon in Sun Ray Server Software (SRSS) 4.0, when Solaris Trusted Extensions is enabled, allows local users to access the sessions of arbitrary users via unknown vectors related to "resource leaks."

7.5

CVE-2008-5422

  • EPSS 1.33%
  • Published 11.12.2008 15:30:00
  • Last modified 09.04.2025 00:30:58

Sun Sun Ray Server Software 3.1 through 4.0 does not properly restrict access, which allows remote attackers to discover the Sun Ray administration password, and obtain admin access to the Data Store and Administration GUI, via unspecified vectors.

4.3

CVE-2008-5423

  • EPSS 0.08%
  • Published 11.12.2008 15:30:00
  • Last modified 09.04.2025 00:30:58

Sun Sun Ray Server Software 3.x and 4.0 and Sun Ray Windows Connector 1.1 and 2.0 expose the LDAP password during a configuration step, which allows local users to discover the Sun Ray administration password, and obtain admin access to the Data Stor...

8.5

CVE-2008-2112

  • EPSS 0.99%
  • Published 08.05.2008 00:20:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in Sun Ray Kiosk Mode 4.0 allows local and remote authenticated Sun Ray administrators to gain root privileges via unknown vectors related to utconfig.

6.4

CVE-2007-6481

  • EPSS 1.66%
  • Published 20.12.2007 20:46:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in the Device Manager daemon (utdevmgrd) in Sun Ray Server Software 2.0, 3.0, 3.1, and 3.1.1 allows remote attackers to create or delete arbitrary directories via unspecified vectors.