CVE-2009-2491

Name of the Vulnerable Software and Affected Versions Sun Ray Server Software (SRSS) version 4.0

Description The issue in the utaudiod daemon allows local users to access the sessions of arbitrary users when Solaris Trusted Extensions is enabled. This is related to resource leaks, although the specific vectors are not detailed.

Recommendations For Sun Ray Server Software (SRSS) version 4.0, consider disabling the utaudiod daemon when Solaris Trusted Extensions is enabled as a temporary workaround to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.