CVE-2009-2490 - Unspecified vulnerability in the utaudiod daemon in Sun Ray Server Software (SRSS) 4.0, when Solaris

CVE-2009-2490

Summary

Unspecified vulnerability in the utaudiod daemon in Sun Ray Server Software (SRSS) 4.0, when Solaris Trusted Extensions is enabled, allows local users to cause a denial of service (audio outage) or possibly gain privileges via unknown vectors related to "resource leaks."

References

Vulnerable Configurations

cpe:2.3:a:sun:ray_server_software:4.0:*:*:*:*:*:*:*
cpe:2.3:a:sun:ray_server_software:4.0:*:*:*:*:*:*:*
cpe:2.3:a:sun:ray_server_software:4.0:*:sparc:*:*:*:*:*
cpe:2.3:a:sun:ray_server_software:4.0:*:sparc:*:*:*:*:*
cpe:2.3:a:sun:ray_server_software:4.0:*:x86:*:*:*:*:*
cpe:2.3:a:sun:ray_server_software:4.0:*:x86:*:*:*:*:*

CVSS

Base:	1.9 (as of 17-08-2017 - 01:30)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:L/AC:M/Au:N/C:N/I:N/A:P

refmap via4

confirm	http://sunsolve.sun.com/search/document.do?assetkey=1-21-127553-06-1
osvdb	55979
sunalert	253889
vupen	ADV-2009-1915
xf	sunray-utaudiod-code-execution(51741)

Last major update

17-08-2017 - 01:30

Published

16-07-2009 - 16:30

Last modified

17-08-2017 - 01:30