[SunRay-Users] FYI: Security Vulnerability in the Sun Ray Server Software Authentication Manager May Allow a Denial of Service (DoS)

Fri, 11 Dec 2009 01:18:11 -0800 

Article ID: 267548
Article Type: Sun Alert
Last reviewed: 2009-12-09
Audience: PUBLIC
Keywords:
Copyright Notice: Copyright © 2009 Sun Microsystems, Inc. All Rights Reserved 


Security Vulnerability in the Sun Ray Server Software Authentication 
Manager May Allow a Denial of Service (DoS)


Category: Security
Release Phase: Resolved
Bug Id: 6838464
Product: Sun Ray Server Software 4.0, Sun Ray Server Software 4.1
Date of Resolved Release: 09-Dec-2009


Security Vulnerability in the Sun Ray Server Software Authentication 
Manager May Allow a Denial of Service (DoS)



1. Impact


A security vulnerability in the Sun Ray Server Software Authentication 
Manager may allow a remote unprivileged user to cause a Denial of 
Service (DoS) to Sun Ray services or to run arbitrary code with root 
privileges.


2. Contributing Factors

This issue can occur in the following releases:

SPARC Platform

    * Sun Ray Server Software 4.0 (for Solaris 10) without patch 127553-07
    * Sun Ray Server Software 4.1 (for Solaris 10) without patch 139548-03

x86 Platform

    * Sun Ray Server Software 4.0 (for Solaris 10) without patch 127554-07
    * Sun Ray Server Software 4.1 (for Solaris 10) without patch 139549-03

Linux


    * Sun Ray Server Software 4.0 (for RHEL AS 4, SLES 9) without patch 
127555-07
    * Sun Ray Server Software 4.1 (for RHEL 5, SLES 10) without patch 
139550-03



To determine if Authentication Manager is running, the following command 
can be run:


$ ps -ef | grep utauth

root  3910  3909  0 Jul 31 ? 434:01 /etc/opt/SUNWut/jre/bin/java -client 
auth.utauthd.utauthd



If no Java process with '-client auth.utauthd.utauthd' parameters is 
listed, then Sun Ray Authentication Manager is not running.



Alternatively, If utauthd(1M) has crashed, running the utgstatus(1M) 
tool will report an error:


$ /opt/SUNWut/sbin/utgstatus
Error: Could not get gstatus information from server <hostname>

3. Symptoms


Sun Ray DTUs will show a 26D OSD icon if the Sun Ray Authentication 
Manager is no longer running.



There are no reliable symptoms which would indicate that this issue has 
been exploited to execute arbitrary code without crashing the Sun Ray 
Authentication Manager.



Commands such as the following can be used to determine if the Sun Ray 
Authentication Manager is no longer running on the server:


$ ps -ef | grep utauth

root  3910  3909  0 Jul 31 ? 434:01 /etc/opt/SUNWut/jre/bin/java -client 
auth.utauthd.utauthd



If no java process with '-client auth.utauthd.utauthd' parameters is 
listed, then the Authentication Manager is not running.



Alternatively, If utauthd(1M) has crashed, running the utgstatus(1M) 
tool will report an error:


$ /opt/SUNWut/sbin/utgstatus
Error: Could not get gstatus information from server <hostname>

4. Workaround


There is no workaround for this issue. Please see the Resolution section 
below.


5. Resolution

This issue is addressed in the following releases:

SPARC Platform


    * Sun Ray Server Software 4.0 (for Solaris 10) with patch 127553-07 
or later
    * Sun Ray Server Software 4.1 (for Solaris 10) with patch 139548-03 
or later


x86 Platform


    * Sun Ray Server Software 4.0 (for Solaris 10) with patch 127554-07 
or later
    * Sun Ray Server Software 4.1 (for Solaris 10) with patch 139549-03 
or later


Linux


    * Sun Ray Server Software 4.0 (for RHEL AS 4, SLES 9) with patch 
127555-07 or later
    * Sun Ray Server Software 4.1 (for RHEL 5, SLES 10) with patch 
139550-03 or later



For more information on Security Sun Alerts, see Technical Instruction 
ID 213557.



This Sun Alert notification is being provided to you on an "AS IS" 
basis. This Sun Alert notification may contain information provided by 
third parties. The issues described in this Sun Alert notification may 
or may not impact your system(s). Sun makes no representations, 
warranties, or guarantees as to the information contained herein. ANY 
AND ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING WITHOUT LIMITATION 
WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR 
NON-INFRINGEMENT, ARE HEREBY DISCLAIMED. BY ACCESSING THIS DOCUMENT YOU 
ACKNOWLEDGE THAT SUN SHALL IN NO EVENT BE LIABLE FOR ANY DIRECT, 
INDIRECT, INCIDENTAL, PUNITIVE, OR CONSEQUENTIAL DAMAGES THAT ARISE OUT 
OF YOUR USE OR FAILURE TO USE THE INFORMATION CONTAINED HEREIN. This Sun 
Alert notification contains Sun proprietary and confidential 
information. It is being provided to you pursuant to the provisions of 
your agreement to purchase services from Sun, or, if you do not have 
such an agreement, the Sun.com Terms of Use. This Sun Alert notification 
may only be used for the purposes contemplated by these agreements.



Copyright 2000-2009 Sun Microsystems, Inc., 4150 Network Circle, Santa 
Clara, CA 95054 U.S.A. All rights reserved.



document link at sun.com:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-267548-1


_______________________________________________
SunRay-Users mailing list
[email protected]
http://www.filibeto.org/mailman/listinfo/sunray-users














    











					Reply via email to