CVE Vulnerability

CVE-2008-5422

Sun Sun Ray Server Software 3.1 through 4.0 does not properly restrict access, which allows remote attackers to discover the Sun Ray administration password, and obtain admin access to the Data Store and Administration GUI, via unspecified vectors.

7.5 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 10 / Impact : 6.4

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

Scope

References
Link Resource
http://sunsolve.sun.com/search/document.do?assetkey=1-26-240365-1 Patch Vendor Advisory
http://www.securityfocus.com/bid/32769 Patch
http://sunsolve.sun.com/search/document.do?assetkey=1-21-127553-04-1 Patch Vendor Advisory
http://secunia.com/advisories/33108
http://support.avaya.com/elmodocs2/security/ASA-2008-502.htm
http://www.securitytracker.com/id?1021383
http://www.vupen.com/english/advisories/2008/3406
https://exchange.xforce.ibmcloud.com/vulnerabilities/47253
Configurations

Configuration 1
Information

Published : 2008-12-11 03:30

Updated : 2018-10-30 04:25

NVD link : CVE-2008-5422

Mitre link : CVE-2008-5422

Products Affected
No products.
CWE
CWE-264