Executive Summary
| Summary | |
|---|---|
| Title | Sun Alert 239886 Security Vulnerabilities in the Embedded Lights Out Manager (ELOM) on Sun Fire X2100 M2 and X2200 M2 May Allow Unauthorized Logins |
| Informations | |||
|---|---|---|---|
| Name | SUN-239886 | First vendor Publication | 2009-01-28 |
| Vendor | Sun | Last vendor Modification | 2009-01-28 |
| Severity (Vendor) | N/A | Revision | N/A |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 10 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | Low |
| Cvss Expoit Score | 10 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Product: Sun Fire X2100 M2 Server Sun Fire X2200 M2 Server Security vulnerabilities in the Embedded Lights Out Manager (ELOM) on Sun Fire X2100 M2 and X2200 M2 servers may allow remote unprivileged users to gain unauthorized login access with all privileges to the ELOM or execute arbitrary commands on the Service Processor (SP). Sun acknowledges with thanks, Tomas Kopal for discovering and reporting one of the above two issues. State: Resolved First released: 28-Jan-2009 |
Original Source
| Url : http://blogs.sun.com/security/entry/sun_alert_239886_security_vulnerabilities |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 100 % | CWE-264 | Permissions, Privileges, and Access Controls |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 52577 | Sun Fire X2100 / X2200 Embedded Lights Out Manager (ELOM) Unspecified Remote ... |
| 52576 | Sun Fire X2100 / X2200 Embedded Lights Out Manager (ELOM) Unspecified Remote ... |
