Local Session Access Vulnerability in Sun Ray Server Software by Sun Microsystems
CVE-2009-2491

Currently unrated

Key Information:

Vendor: Oracle
Status: Ray Server Software
Vendor: CVE Published:; 16 July 2009

Summary

The utaudiod daemon in Sun Ray Server Software 4.0 has a vulnerability that allows local users to gain unauthorized access to the sessions of other users when Solaris Trusted Extensions is enabled. This issue arises from resource leaks, which can be exploited through unknown vectors, potentially compromising user privacy and security. This highlights the importance of monitoring and securing system configurations to prevent unauthorized access.

References

http://sunsolve.sun.com/search/document.do?assetkey=1-66-...

vendor-advisoryx_refsource_SUNALERT

http://osvdb.org/55978

vdb-entryx_refsource_OSVDB

http://sunsolve.sun.com/search/document.do?assetkey=1-21-...

x_refsource_CONFIRM

Timeline

Vulnerability published
Jul 16, 2009
Vulnerability Reserved
Jul 16, 2009