Vulnerability Description
cgi-bin/main in Sun Ray Server Software 2.0 and 3.0 before 20070123 allows local users to obtain the utadmin password by reading a web server's log file, or by conducting a different, unspecified local attack.
CVSS Score
4.6
MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sun | Ray Server Software | 2.0 |
References
- http://osvdb.org/31671
- http://secunia.com/advisories/23900
- http://securitytracker.com/id?1017547
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-102779-1
- http://www.securityfocus.com/bid/22192
- http://www.vupen.com/english/advisories/2007/0316
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31700
- http://osvdb.org/31671
- http://secunia.com/advisories/23900
- http://securitytracker.com/id?1017547
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-102779-1
- http://www.securityfocus.com/bid/22192
- http://www.vupen.com/english/advisories/2007/0316
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31700
FAQ
What is CVE-2007-0482?
CVE-2007-0482 is a vulnerability with a CVSS score of 4.6 (MEDIUM). cgi-bin/main in Sun Ray Server Software 2.0 and 3.0 before 20070123 allows local users to obtain the utadmin password by reading a web server's log file, or by conducting a different, unspecified loca...
How severe is CVE-2007-0482?
CVE-2007-0482 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-0482?
Check the references section above for vendor advisories and patch information. Affected products include: Sun Ray Server Software.