Executive Summary
Summary | |
---|---|
Title | Sun Alert 243486 A Security Vulnerability in the Sun Integrated Lights-Out Manager (ILOM) may Allow Unauthorized Access Through the Web Interface |
Informations | |||
---|---|---|---|
Name | SUN-243486 | First vendor Publication | 2008-10-21 |
Vendor | Sun | Last vendor Modification | 2008-11-10 |
Severity (Vendor) | N/A | Revision | N/A |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:S/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 9 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Low |
Cvss Expoit Score | 8 | Authentication | Requires single instance |
Calculate full CVSS 2.0 Vectors scores |
Detail
Product: Sun Fire X4450 Sun Fire X4500 Sun Fire X4540 Sun Fire X4600 Sun Fire X4600 M2 Sun Blade X6000 Sun Blade X6048 Sun Blade X6220 Sun Blade X6250 Sun Blade X6450 Sun Blade X8000 Sun Blade X8000 P Sun Blade X8400 Sun Blade X8420 Sun Blade X8440 Sun Blade X8450 Sun Netra X4200 M2 Sun Netra X4250 Sun Netra X4450 A security vulnerability in the Sun Integrated Lights-Out Manager (ILOM) may allow unprivileged users who have access to the ILOM web interface to gain unauthorized access to the service processor (SP). This may allow such users to power off or reset the system which is a type of Denial of Service (DoS). State: Resolved First released: 21-Oct-2008 |
Original Source
Url : http://blogs.sun.com/security/entry/sun_alert_243486_a_security |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-287 | Improper Authentication |
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Application | 1 | |
Hardware | 2 | |
Hardware | 1 | |
Hardware | 2 | |
Hardware | 2 | |
Hardware | 2 |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
49212 | Sun Integrated Lights-Out Manager Web Interface Unspecified Access Restrictio... |
Alert History
Date | Informations |
---|---|
2013-02-06 19:08:19 |
|