Back to search
CVE-2008-5423
Published: Dec 11, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Sun Sun Ray Server Software 3.x and 4.0 and Sun Ray Windows Connector 1.1 and 2.0 expose the LDAP password during a configuration step, which allows local users to discover the Sun Ray administration password, and obtain admin access to the Data Store and Administration GUI, via unspecified vectors related to the utconfig component of the Server Software and the uttscadm component of the Windows Connector.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
33119
third-party-advisory
x_refsource_SECUNIA
32772
vdb-entry
x_refsource_BID
33108
third-party-advisory
x_refsource_SECUNIA
rayserver-raywinconnector-security-bypass(47258)
vdb-entry
x_refsource_XF
240506
vendor-advisory
x_refsource_SUNALERT
http://sunsolve.sun.com/search/document.do?assetkey=1-21-127556-03-1
x_refsource_CONFIRM
http://support.avaya.com/elmodocs2/security/ASA-2008-500.htm
x_refsource_CONFIRM
1021379
vdb-entry
x_refsource_SECTRACK
ADV-2008-3406
vdb-entry
x_refsource_VUPEN
http://sunsolve.sun.com/search/document.do?assetkey=1-21-127553-04-1
x_refsource_CONFIRM
ADV-2008-3407
vdb-entry
x_refsource_VUPEN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now