Executive Summary

TitleSun Alert 248666 This Alert Covers CVE-2010-0891 for the Sun Management Center Product
NameSUN-248666First vendor Publication2010-04-12
VendorSunLast vendor Modification2010-04-12
Severity (Vendor) N/ARevisionN/A

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:P/I:P/A:N)
Cvss Base Score5.8Attack RangeNetwork
Cvss Impact Score4.9Attack ComplexityMedium
Cvss Expoit Score8.6AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores


Product: Sun Management Center 3.6.1, Sun Management Center 4.0

This Alert covers CVE-2010-0891 for the Sun Management Center product.

CVE-2010-0891 can be found at http://cve.mitre.org/cgi-bin/cvename.cgi?name=2010-0891

Please see http://www.oracle.com/technology/deploy/security/alerts.htm for more information about Critical Patch Updates and Security Alerts. This publication relates to the CPU for April 2010.

State: Resolved
First released: 12-Apr-2010

Original Source

Url : http://blogs.sun.com/security/entry/sun_alert_248666_this_alert

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:7233
Oval ID: oval:org.mitre.oval:def:7233
Title: Sun Management Center Product Vulnerability
Description: Unspecified vulnerability in the Sun Management Center component in Oracle Sun Product Suite 3.6.1 and 4.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Solaris Container Manager.
Family: unix Class: vulnerability
Reference(s): CVE-2010-0891
Version: 3
Platform(s): Sun Solaris 10
Definition Synopsis:

CPE : Common Platform Enumeration


Open Source Vulnerability Database (OSVDB)

63815Sun Management Center Solaris Container Manager Zone Log Unspecified XSS

Nessus® Vulnerability Scanner

2013-07-03Name : The remote host is missing Sun Security Patch number 139613-04
File : solaris10_139613.nasl - Type : ACT_GATHER_INFO