CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2009-4314
https://notcve.org/view.php?id=CVE-2009-4314
14 Dec 2009 — Sun Ray Server Software 4.1 on Solaris 10, when Automatic Multi-Group Hotdesking (AMGH) is enabled, responds to a logout action by immediately logging the user in again, which makes it easier for physically proximate attackers to obtain access to a session by going to an unattended DTU device. Sun Ray Server Software v4.1 en Solaris v10, cuando esta activado el Multi-Group Hotdesking (AMGH) esta activo, responde a una acción de salida de sesión mediante el logueo del usuario de forma inmediata, lo que hace ... • http://sunsolve.sun.com/search/document.do?assetkey=1-21-139548-03-1 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 5%CPEs: 6EXPL: 0CVE-2009-4294
https://notcve.org/view.php?id=CVE-2009-4294
11 Dec 2009 — Unspecified vulnerability in the Authentication Manager (aka utauthd) in Sun Ray Server Software 4.0 and 4.1 allows remote attackers to execute arbitrary code or cause a denial of service via unknown vectors. Vulnerabilidad inespecífica en Authentication Manager (también conocido como utauthd) en Sun Ray Server Software v4.0 y v4.1 permite a atacantes remotos ejecutar código arbitrario o producir una denegación de servicio a través de vectores desconocidos. • http://sunsolve.sun.com/search/document.do?assetkey=1-21-127553-07-1 •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2009-4295
https://notcve.org/view.php?id=CVE-2009-4295
11 Dec 2009 — Sun Ray Server Software 4.0 and 4.1 does not generate a unique DSA private key for the firmware on each Sun Ray 1, 1g, 100, and 150 DTU device, which makes it easier for remote attackers to obtain sensitive information by predicting a key and then using it to decrypt sniffed network traffic. Sun Ray Server Software v4.0 y v4.1 no genera una única clave privada DSA para el firmware en cada dispositivo Sun Ray 1, 1g, 100 y 150 DTU, lo que facilita a atacantes remotos obtener información sensible prediciendo u... • http://sunsolve.sun.com/search/document.do?assetkey=1-21-127553-07-1 • CWE-310: Cryptographic Issues •