Vulnerabilities > Novell > Suse Linux Enterprise Server > 9

DATE CVE VULNERABILITY TITLE RISK
2008-12-11 CVE-2008-5423 Information Exposure vulnerability in SUN RAY Server Software and RAY Windows Connector
Sun Sun Ray Server Software 3.x and 4.0 and Sun Ray Windows Connector 1.1 and 2.0 expose the LDAP password during a configuration step, which allows local users to discover the Sun Ray administration password, and obtain admin access to the Data Store and Administration GUI, via unspecified vectors related to the utconfig component of the Server Software and the uttscadm component of the Windows Connector.
local
low complexity
sun novell redhat CWE-200
4.3
2008-12-11 CVE-2008-5422 Permissions, Privileges, and Access Controls vulnerability in SUN RAY Server Software
Sun Sun Ray Server Software 3.1 through 4.0 does not properly restrict access, which allows remote attackers to discover the Sun Ray administration password, and obtain admin access to the Data Store and Administration GUI, via unspecified vectors.
network
low complexity
sun novell redhat CWE-264
7.5
2008-05-08 CVE-2008-2112 Privilege Escalation vulnerability in SUN RAY Server Software 4.0
Unspecified vulnerability in Sun Ray Kiosk Mode 4.0 allows local and remote authenticated Sun Ray administrators to gain root privileges via unknown vectors related to utconfig.
network
novell redhat sun
8.5