CVE-2008-5423

Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 11/12/2008 Updated: 30/10/2018

CVSS v2 Base Score: 4.3 | Impact Score: 6.4 | Exploitability Score: 3.1

VMScore: 383

Vector: AV:L/AC:L/Au:S/C:P/I:P/A:P

Sun Sun Ray Server Software 3.x and 4.0 and Sun Ray Windows Connector 1.1 and 2.0 expose the LDAP password during a configuration step, which allows local users to discover the Sun Ray administration password, and obtain admin access to the Data Store and Administration GUI, via unspecified vectors related to the utconfig component of the Server Software and the uttscadm component of the Windows Connector.

Vulnerable Product	Search on Vulmon	Subscribe to Product
sun ray_server_software 3.1
sun ray_server_software 3.0
sun ray_server_software 4.0
sun ray_windows_connector 2.0
sun ray_windows_connector 1.1
sun ray_server_software 3.1.1

CWE-200 http://www.securityfocus.com/bid/32772 http://sunsolve.sun.com/search/document.do?assetkey=1-21-127553-04-1 http://securitytracker.com/id?1021379 http://sunsolve.sun.com/search/document.do?assetkey=1-21-127556-03-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-240506-1 http://secunia.com/advisories/33108 http://secunia.com/advisories/33119 http://support.avaya.com/elmodocs2/security/ASA-2008-500.htm http://www.vupen.com/english/advisories/2008/3407 http://www.vupen.com/english/advisories/2008/3406 https://exchange.xforce.ibmcloud.com/vulnerabilities/47258 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-5423

Vulnerability Summary

References

Vulmon Search

About

Products

Connect