Vulnerability Details CVE-2004-0701
Sun Ray Server Software (SRSS) 1.3 and 2.0 for Solaris 2.6, 7 and 8 does not properly detect a smartcard removal when the card is quickly removed, reinserted, and removed again, which could cause a user session to stay logged in and allow local users to gain unauthorized access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 28.1%
CVSS Severity
CVSS v2 Score 4.6
References
- http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F53922
- http://www.kb.cert.org/vuls/id/100780
- http://www.securityfocus.com/bid/7457
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11905
- http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F53922
- http://www.kb.cert.org/vuls/id/100780
- http://www.securityfocus.com/bid/7457
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11905
Products affected by CVE-2004-0701
-
cpe:2.3:a:sun:ray_server_software:1.3
-
cpe:2.3:a:sun:ray_server_software:2.0