CVE-2009-2491

3 documents3 sources

Severity

4.4MEDIUM

EPSS

0.1%

top 78.89%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SUN RAY Server Software

Timeline

PublishedJul 16

Latest updateMay 2

Description

The utaudiod daemon in Sun Ray Server Software (SRSS) 4.0, when Solaris Trusted Extensions is enabled, allows local users to access the sessions of arbitrary users via unknown vectors related to "resource leaks."

CVSS vector

AV:L/AC:M/C:P/I:P/A:PExploitability: 3.4 | Impact: 6.4

Affected Packages1 packages

▶NVDsun/ray4.0

Patches

Patch: sunsolve.sun.com ↗Patch: sunsolve.sun.com ↗Patch: sunsolve.sun.com ↗

🔴Vulnerability Details

GHSA

GHSA-jv96-g6m6-p7xw: The utaudiod daemon in Sun Ray Server Software (SRSS) 4↗2022-05-02

▶

CVEList

CVE-2009-2491: The utaudiod daemon in Sun Ray Server Software (SRSS) 4↗2009-07-16

▶