CVE-2007-0482

Currently unrated

Key Information:

Vendor: Oracle
Status: Ray Server Software
Vendor: CVE Published:; 25 January 2007

Summary

cgi-bin/main in Sun Ray Server Software 2.0 and 3.0 before 20070123 allows local users to obtain the utadmin password by reading a web server's log file, or by conducting a different, unspecified local attack.

References

http://sunsolve.sun.com/search/document.do?assetkey=1-26-...

vendor-advisoryx_refsource_SUNALERT

http://secunia.com/advisories/23900

third-party-advisoryx_refsource_SECUNIA

http://www.vupen.com/english/advisories/2007/0316

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Jan 25, 2007
Vulnerability Reserved
Jan 24, 2007