Описание
Sun Ray Server Software 4.1 on Solaris 10, when Automatic Multi-Group Hotdesking (AMGH) is enabled, responds to a logout action by immediately logging the user in again, which makes it easier for physically proximate attackers to obtain access to a session by going to an unattended DTU device.
Ссылки
- Patch
- PatchVendor Advisory
- Patch
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:a:sun:ray_server_software:4.1:*:sparc:*:*:*:*:*
cpe:2.3:a:sun:ray_server_software:4.1:*:x86:*:*:*:*:*
Одно из
cpe:2.3:o:sun:solaris:10:*:sparc:*:*:*:*:*
cpe:2.3:o:sun:solaris:10:*:x86:*:*:*:*:*
EPSS
Процентиль: 16%
0.00051
Низкий
4.4 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
почти 4 года назад
Sun Ray Server Software 4.1 on Solaris 10, when Automatic Multi-Group Hotdesking (AMGH) is enabled, responds to a logout action by immediately logging the user in again, which makes it easier for physically proximate attackers to obtain access to a session by going to an unattended DTU device.
EPSS
Процентиль: 16%
0.00051
Низкий
4.4 Medium
CVSS2
Дефекты
CWE-264