CVE-2009-2490

Name of the Vulnerable Software and Affected Versions Sun Ray Server Software (SRSS) version 4.0

Description The issue is related to an unspecified vulnerability in the utaudiod daemon. When Solaris Trusted Extensions is enabled, it allows local users to cause a denial of service, resulting in an audio outage, or possibly gain privileges. The vulnerability is related to "resource leaks" via unknown vectors.

Recommendations For Sun Ray Server Software (SRSS) version 4.0, consider disabling the utaudiod daemon as a temporary workaround to minimize the risk of exploitation. Restrict access to the daemon to prevent local users from causing a denial of service or gaining privileges. At the moment, there is no information about a newer version that contains a fix for this vulnerability.