Executive Summary

Title Sun Alert 246746 An IP(7P) Spoofing Security Vulnerability in Mid-range Sun Fire Server's Firmware May Allow Unauthorized Access to System Controllers
Name SUN-246746 First vendor Publication 2008-12-12
Vendor Sun Last vendor Modification 2009-08-19
Severity (Vendor) N/A Revision N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score 10 Attack Range Network
Cvss Impact Score 10 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores


Product: Sun Fire 3800 Server Sun Fire 4800 Server Sun Fire 4810 Server Sun Fire 6800 Server Sun Fire E2900 Server Sun Fire E4900 Server Sun Fire E6900 Server Sun Fire V1280 Server Netra 1280 Server Sun Netra 1290 Server

An IP(7P) spoofing security vulnerability in certain Mid-range Sun Fire Server's firmware may allow a remote privileged/unprivileged user to gain unauthorized access to the System Controller (SC). Such users may also gain access to the system console and possibly the host operating system running on these servers.This may allow such users to power off or reset the system which is a type of Denial of Service (DoS).

State: Resolved
First released: 12-Dec-2008

Original Source

Url : http://blogs.sun.com/security/entry/sun_alert_246746_an_ip

CPE : Common Platform Enumeration

Hardware 13

Open Source Vulnerability Database (OSVDB)

Id Description
50937 Sun Fire / Netra Server IP Spoofing Remote Restriction Bypass

Alert History

If you want to see full details history, please login or register.
Date Informations
2013-02-06 19:08:22
  • Multiple Updates