Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Sun Ray Server Software (SRSS) 1.3 and 2.0 for Solaris 2.6, 7 and 8 does not properly detect a smartcard removal when the card is quickly removed, reinserted, and removed again, which could cause a user session to stay logged in and allow local users to gain unauthorized access.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Sun Ray智能卡移除会话退出失败漏洞
Vulnerability Description
Sun Ray客户端包含的智能卡读取器包含针对Sun Ray服务器的验证功能。 智能卡在特殊条件下存在漏洞,本地攻击者可以利用这个漏洞利用其他用户权限访问RAY服务器。 当在快速移除,插入,再移除智能卡的情况下,Sun Ray智能卡读取器会仍旧保存着连接到Desk Top Unit (DTU)的登录会话。 <*链接:http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F53922 *>
CVSS Information
N/A
Vulnerability Type
N/A