CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2002-2036

HIGH
7.5
CVSS Severity Score
EPSS Score0.1570%
EPSS Percentile43.34th
Published2002年12月31日
Last Modified2026年4月16日

Vulnerability Description

Sun Ray Server Software (SRSS) 1.3, when Non-Smartcard Mobility (NSCM) is enabled, allows remote attackers to login as another user by running dtlogin from a system that supports the XDMCP client.

Affected Platforms (CPE)

📦
Sun

Ray Server Software

= 1.3

References & Advisories

🔗 http://sunsolve.sun.com/search/document.do?assetkey=1-26-44069-1
🔗 http://www.iss.net/security_center/static/9252.php
🔗 http://www.securityfocus.com/bid/4911
🔗 http://sunsolve.sun.com/search/document.do?assetkey=1-26-44069-1
🔗 http://www.iss.net/security_center/static/9252.php
🔗 http://www.securityfocus.com/bid/4911

相關漏洞威脅

CVE-2009-429410.0

Unspecified vulnerability in the Authentication Manager (aka utauthd) in Sun Ray Server Software 4.0 and 4.1 allows remote attacke...

CVE-2010-088810.0

Unspecified vulnerability in the Sun Ray Server Software component in Oracle Sun Product Suite 4.0, 4.1, and 4.2 allows remote att...

CVE-2007-64827.8

Unspecified vulnerability in the Device Manager daemon (utdevmgrd) in Sun Ray Server Software 2.0, 3.0, 3.1, and 3.1.1 allows remo...

CVE-2009-42957.8

Sun Ray Server Software 4.0 and 4.1 does not generate a unique DSA private key for the firmware on each Sun Ray 1, 1g, 100, and 15...