Executive Summary
| Summary | |
|---|---|
| Title | Sun Alert 103175 Security Vulnerabilities in the Sun Ray Device Manager Daemon |
| Informations | |||
|---|---|---|---|
| Name | SUN-103175 | First vendor Publication | 2007-12-19 |
| Vendor | Sun | Last vendor Modification | 2008-02-19 |
| Severity (Vendor) | N/A | Revision | N/A |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 7.8 | Attack Range | Network |
| Cvss Impact Score | 6.9 | Attack Complexity | Low |
| Cvss Expoit Score | 10 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Product: Sun Ray Server Software 3.1 Sun Ray Server Software 3.1.1 Sun Ray Server Software 3.0 Sun Ray Server Software 2.0 Security vulnerabilities in the Sun Ray Device Manager daemon (utdevmgrd(1M)) may allow a local or remote unprivileged user to create or delete arbitrary directories on the server, or cause the Device Manager daemon to crash resulting in an interruption of peripheral device service to Sun Ray users. Sun acknowledges with thanks, Danny Quist and Anthony Clark at Los Alamos National Labs for bringing these issues to our attention. State: Workaround First released: 18-Dec-2007 |
Original Source
| Url : http://blogs.sun.com/security/entry/sun_alert_103175_security_vulnerabilities |
CPE : Common Platform Enumeration
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 40846 | Sun Ray Server Software (SRSS) Device Manager daemon (utdevmgrd) Unspecified ... |
| 40845 | Sun Ray Server Software (SRSS) Device Manager daemon (utdevmgrd) Unspecified ... |
