Lucene search

[email protected]CVE-2009-2491

HistoryJul 16, 2009 - 4:30 p.m.

CVE-2009-2491

2009-07-1616:30:00

[email protected]

web.nvd.nist.gov

cve-2009-2491

utaudiod

srss

solaris

security vulnerability

resource leaks

6.5 Medium

AI Score

Confidence

Low

4.4 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

13.1%

JSON

The utaudiod daemon in Sun Ray Server Software (SRSS) 4.0, when Solaris Trusted Extensions is enabled, allows local users to access the sessions of arbitrary users via unknown vectors related to “resource leaks.”

Affected configurations

NVD

Node

sunray_server_softwareMatch4.0

sunray_server_softwareMatch4.0sparc

sunray_server_softwareMatch4.0x86

CPENameOperatorVersion
sun:ray_server_softwaresun ray server softwareeq4.0

CPE	Name	Operator	Version
sun:ray_server_software	sun ray server software	eq	4.0

References

osvdb.org/55978

sunsolve.sun.com/search/document.do?assetkey=1-21-127553-06-1

sunsolve.sun.com/search/document.do?assetkey=1-66-253889-1

www.vupen.com/english/advisories/2009/1915

exchange.xforce.ibmcloud.com/vulnerabilities/51742

6.5 Medium

AI Score

Confidence

Low

4.4 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

13.1%

JSON

Related for CVE-2009-2491

prion1 nvd1 cvelist1 nessus1