Lucene search

MitreCVE-2009-2489

HistoryJul 16, 2009 - 4:30 p.m.

CVE-2009-2489

2009-07-1616:30:00

mitre

web.nvd.nist.gov

cve-2009-2489

vulnerability

utdmsession

sun ray server software

srss 4.0

nvd

security issue

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.5

Confidence

Low

EPSS

Percentile

13.2%

JSON

Unspecified vulnerability in the utdmsession program in Sun Ray Server Software (SRSS) 4.0 allows local users to access the sessions of arbitrary users via unknown vectors.

Affected configurations

Nvd

Node

sunray_server_softwareMatch4.0

sunray_server_softwareMatch4.0linux

sunray_server_softwareMatch4.0sparc

sunray_server_softwareMatch4.0x86

VendorProductVersionCPE
sunray_server_software4.0cpe:2.3:a:sun:ray_server_software:4.0:*:*:*:*:*:*:*
sunray_server_software4.0cpe:2.3:a:sun:ray_server_software:4.0:*:linux:*:*:*:*:*
sunray_server_software4.0cpe:2.3:a:sun:ray_server_software:4.0:*:sparc:*:*:*:*:*
sunray_server_software4.0cpe:2.3:a:sun:ray_server_software:4.0:*:x86:*:*:*:*:*

Vendor	Product	Version	CPE
sun	ray_server_software	4.0	cpe:2.3:a:sun:ray_server_software:4.0:::::::*
sun	ray_server_software	4.0	cpe:2.3:a:sun:ray_server_software:4.0::linux:::::
sun	ray_server_software	4.0	cpe:2.3:a:sun:ray_server_software:4.0::sparc:::::
sun	ray_server_software	4.0	cpe:2.3:a:sun:ray_server_software:4.0::x86:::::

References

sunsolve.sun.com/search/document.do?assetkey=1-21-127553-06-1

sunsolve.sun.com/search/document.do?assetkey=1-66-252226-1

www.vupen.com/english/advisories/2009/1915

exchange.xforce.ibmcloud.com/vulnerabilities/51743

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.5

Confidence

Low

EPSS

Percentile

13.2%

JSON

Related for CVE-2009-2489