Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
cgi-bin/main in Sun Ray Server Software 2.0 and 3.0 before 20070123 allows local users to obtain the utadmin password by reading a web server's log file, or by conducting a different, unspecified local attack.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Sun Ray Server管理GUI管理员口令泄露漏洞
Vulnerability Description
Sun Ray Server软件可为客户提供安全、低成本、几乎无需管理的桌面环境。 Sun Ray Server Software的实现上存在漏洞,本地攻击者可能利用此漏洞获取非授权访问。本地非特权用户可以在管理员登录到Sun Ray管理工具时截获Sun Ray管理员(utadmin)的口令;此外,能够读访问Sun Ray专用Web服务器日志文件或代理服务器上类似日志文件的用户可以获取Sun Ray管理员(utadmin)的口令。这可能允许用户以utadmin用户的权限获得到Sun Ray Server
CVSS Information
N/A
Vulnerability Type
N/A