CVE-2009-4314

Name of the Vulnerable Software and Affected Versions Sun Ray Server Software version 4.1

Description The issue allows physically proximate attackers to obtain access to a session by going to an unattended DTU device. This occurs because the software responds to a logout action by immediately logging the user in again when Automatic Multi-Group Hotdesking (AMGH) is enabled.

Recommendations For Sun Ray Server Software version 4.1, consider disabling the Automatic Multi-Group Hotdesking (AMGH) feature as a temporary workaround to minimize the risk of exploitation.