2 results (0.008 seconds)

CVSS: 10.0EPSS: 2%CPEs: 23EXPL: 0

Sun ScApp firmware 5.18.x, 5.19.x, and 5.20.0 through 5.20.10 on Sun Fire and Netra platforms allows remote attackers to access the System Controller (SC), the system console, and possibly the host OS, and cause a denial of service (shutdown or reboot), via spoofed IP packets. Sun ScApp firmware 5.18.x, 5.19.x, y 5.20.0 hasta la 5.20.10 en plataformas Sun Fire y Netra permite a atacantes remotos acceder al Controlador del Sistema(SC), a la consola del sistema y, posiblemente, al sistema operativo anfitrión, y causar una denegación de servicio (mediante apagado o reinicio), a través de paquetes con IPs falsas. • http://secunia.com/advisories/33158 http://securitytracker.com/id?1021392 http://sunsolve.sun.com/search/document.do?assetkey=1-21-114527-12-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-246746-1 http://sunsolve.sun.com/search/document.do?assetkey=1-77-1019814.1-1 http://www.securityfocus.com/bid/32805 http://www.vupen.com/english/advisories/2008/3440 •

CVSS: 9.0EPSS: 0%CPEs: 39EXPL: 0

Unspecified vulnerability in Sun Integrated Lights-Out Manager (ILOM) 2.0.1.5 through 2.0.4.26 allows remote authenticated users to (1) access the service processor (SP) and cause a denial of service (shutdown or reboot), or (2) access the host operating system and have an unspecified impact, via unknown vectors. Vulnerabilidad no especificada en Sun Integrated Lights-Out Manager (ILOM) v2.0.1.5 hsata v2.0.4.26 permite a usuarios autenticados remotos (1) acceder al procesador de servicio (SP) y provocar una denegación de servicio (apagado o reinicio), o (1) acceder al sistema operativo anfitrión y tener un impacto desconocido, a través de vectores desconocidos. • http://secunia.com/advisories/32298 http://sunsolve.sun.com/search/document.do?assetkey=1-26-243486-1 http://www.securityfocus.com/bid/31861 http://www.securitytracker.com/id?1021094 http://www.vupen.com/english/advisories/2008/2890 https://exchange.xforce.ibmcloud.com/vulnerabilities/46023 • CWE-287: Improper Authentication •