Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5422

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-5422
Last Modified 07 Mar 2011 10:14:34
Published 11 Dec 2008 10:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-5422

Summary

Sun Sun Ray Server Software 3.1 through 4.0 does not properly restrict access, which allows remote attackers to discover the Sun Ray administration password, and obtain admin access to the Data Store and Administration GUI, via unspecified vectors.

Vulnerable Systems

Application

  • Sun Ray Server Software 3.0

  • Sun Ray Server Software 3.1

  • Sun Ray Server Software 3.1.1

  • Sun Ray Server Software 4.0


References

BID - 32769

SUNALERT - 240365

CONFIRM - http://sunsolve.sun.com/search/document.do?assetkey=1-21-127553-04-1

XF - rayserver-unspecified-security-bypass(47253)

VUPEN - ADV-2008-3406

SECTRACK - 1021383

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2008-502.htm

SECUNIA - 33108


Last Updated: 27 May 2016 10:48:48