Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-2036


Vulnerability Score 7.5 7.5
CVE Id CVE-2002-2036
Last Modified 05 Sep 2008 04:32:09
Published 31 Dec 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Sun Ray Server Software (SRSS) 1.3, when Non-Smartcard Mobility (NSCM) is enabled, allows remote attackers to login as another user by running dtlogin from a system that supports the XDMCP client.

Vulnerable Systems


  • Sun Ray Server Software 1.3


BID - 4911

XF - srss-nscm-unauthorized-access(9252)

SUNALERT - 44069

Last Updated: 27 May 2016 10:37:35