Sun: >> Ray Server Software >> 1.3 Security Vulnerabilities
Sun Ray Server Software (SRSS) 1.3 and 2.0 for Solaris 2.6, 7 and 8 does not properly detect a smartcard removal when the card is quickly removed, reinserted, and removed again, which could cause a user session to stay logged in and allow local users to gain unauthorized access.
CVSS Score
4.6
EPSS Score
0.001
Published
2004-07-27
Sun Ray Server Software (SRSS) 1.3, when Non-Smartcard Mobility (NSCM) is enabled, allows remote attackers to login as another user by running dtlogin from a system that supports the XDMCP client.
CVSS Score
7.5
EPSS Score
0.007
Published
2002-12-31