cgi-bin/main in Sun Ray Server Software 2.0 and 3.0 prior to 20070123 allows local users to obtain the utadmin password by reading a web server's log file, or by conducting a different, unspecified local attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sun ray server software 3.0 |
||
sun ray server software 2.0 |