CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2009-0171
https://notcve.org/view.php?id=CVE-2009-0171
The Sun SPARC Enterprise M4000 and M5000 Server, within a certain range of serial numbers, allows remote attackers to use the manufacturing root password, perform a root login to the eXtended System Control Facility Unit (aka XSCFU or Service Processor), and have unspecified other impact. Los servidores Sun SPARC Enterprise M4000 y M5000, dentro de un cierto rango de números de serie, permite a los atacantes remotos utilizar la contraseña root de fabricación, realizar un inicio de sesión root en eXtended System Control Facility Unit (también se conoce como XSCFU o procesador de servicios), y tener otro impacto no especificado. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-249126-1 http://www.securityfocus.com/bid/33280 http://www.securitytracker.com/id?1021602 http://www.vupen.com/english/advisories/2009/0207 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 4.6EPSS: 0%CPEs: 31EXPL: 0CVE-2008-4992
https://notcve.org/view.php?id=CVE-2008-4992
The SPARC hypervisor in Sun System Firmware 6.6.3 through 6.6.5 and 7.1.3 through 7.1.3.e on UltraSPARC T1, T2, and T2+ processors allows logical domain users to access memory in other logical domains via unknown vectors. El hipervisor SPARC en el Firmware de los procesadores de Sun System v6.6.3 hasta v6.6.5 y v7.1.3 hasta 7.1.3.e en UltraSPARC T1, T2 y T2+, permite a usarios del dominio lógico acceder a memoria en otros dominios lógicos a través de vectores desconocidos. • http://secunia.com/advisories/32582 http://sunsolve.sun.com/search/document.do?assetkey=1-26-244826-1 http://www.securityfocus.com/bid/32143 http://www.securitytracker.com/id?1021153 http://www.vupen.com/english/advisories/2008/3047 https://exchange.xforce.ibmcloud.com/vulnerabilities/46407 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.0EPSS: 0%CPEs: 39EXPL: 0CVE-2008-4722
https://notcve.org/view.php?id=CVE-2008-4722
Unspecified vulnerability in Sun Integrated Lights-Out Manager (ILOM) 2.0.1.5 through 2.0.4.26 allows remote authenticated users to (1) access the service processor (SP) and cause a denial of service (shutdown or reboot), or (2) access the host operating system and have an unspecified impact, via unknown vectors. Vulnerabilidad no especificada en Sun Integrated Lights-Out Manager (ILOM) v2.0.1.5 hsata v2.0.4.26 permite a usuarios autenticados remotos (1) acceder al procesador de servicio (SP) y provocar una denegación de servicio (apagado o reinicio), o (1) acceder al sistema operativo anfitrión y tener un impacto desconocido, a través de vectores desconocidos. • http://secunia.com/advisories/32298 http://sunsolve.sun.com/search/document.do?assetkey=1-26-243486-1 http://www.securityfocus.com/bid/31861 http://www.securitytracker.com/id?1021094 http://www.vupen.com/english/advisories/2008/2890 https://exchange.xforce.ibmcloud.com/vulnerabilities/46023 • CWE-287: Improper Authentication •
CVSS: 10.0EPSS: 1%CPEs: 3EXPL: 0CVE-2008-1369
https://notcve.org/view.php?id=CVE-2008-1369
A certain incorrect Sun Solaris 10 image on SPARC Enterprise T5120 and T5220 servers has /etc/default/login and /etc/ssh/sshd_config files that configure root logins in a manner unintended by the vendor, which allows remote attackers to gain privileges via unspecified vectors. Alguna imagen incorrecta de Sun Solaris 10 sobre servidores SPARC Enterprise T5120 y T5220 tiene los ficheros /etc/default/login y /etc/ssh/sshd_config que configuran los logins de root de una forma involuntaria por parte del fabricante, permite a atacantes remotos obtener privilegios a través de vectores desconocidos. • http://secunia.com/advisories/29529 http://sunsolve.sun.com/search/document.do?assetkey=1-66-231244-1 http://www.securityfocus.com/bid/28469 http://www.securitytracker.com/id?1019708 http://www.vupen.com/english/advisories/2008/0810/references https://exchange.xforce.ibmcloud.com/vulnerabilities/41332 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 6%CPEs: 5EXPL: 0CVE-2007-6360
https://notcve.org/view.php?id=CVE-2007-6360
Unspecified vulnerability in the Sun eXtended System Control Facility (XSCF) Control Package (XCP) firmware before 1050 on SPARC Enterprise M4000, M5000, M8000, and M9000 servers allows remote attackers to cause a denial of service (reboot) via (1) telnet, (2) ssh, or (3) http network traffic that triggers memory exhaustion. Vulnerabilidad no especificada en Sun eXtended System Control Facility (XSCF) Control Package (XCP) versiones anteriores de firmware a 1050 de servidores SPARC Enterprise M4000, M5000, M8000, y M9000 permite a atacantes remotos provocar una denegación de servicio (reinicio) mediante tráfico de red (1) telnet, (2) ssh, ó (3) http que dispara agotamiento de memoria. • http://osvdb.org/40842 http://osvdb.org/40843 http://osvdb.org/40844 http://secunia.com/advisories/27926 http://securitytracker.com/id?1019048 http://sunsolve.sun.com/search/document.do?assetkey=1-26-103159-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-201333-1 http://www.securityfocus.com/bid/26712 http://www.vupen.com/english/advisories/2007/4098 https://exchange.xforce.ibmcloud.com/vulnerabilities/38860 •