Vulnerability in Sun Ray_server_software
CVE-2002-2036
Sun Ray Server Software (SRSS) 1.3, when Non-Smartcard Mobility (NSCM) is enabled, allows remote attackers to login as another user by running dtlogin from a system that supports the XDMCP client.
EPSS: 0.015 (71.5th percentile) — read the EPSS interpretation.
Affected products
- Sun Ray_server_software — versions 1.3
- N/a — versions n/a
References
- cve@mitre.org (vendor-advisory, Patch, x_refsource_SUNALERT, Vendor Advisory)
- cve@mitre.org (Patch, vdb-entry, x_refsource_BID)
- cve@mitre.org (Patch, vdb-entry, x_refsource_XF)