漏洞信息详情
Sun Integrated Lights-Out Manager (ILOM) 身份认证绕过漏洞
- CNNVD编号:CNNVD-200810-431
- 危害等级: 低危
- CVE编号: CVE-2008-4722
- 漏洞类型: 授权问题
- 发布时间: 2008-10-23
- 威胁类型: 远程
- 更新时间: 2009-02-20
- 厂 商: sun
- 漏洞来源: Sun Microsystems
漏洞简介
Sun Integrated Lights-Out Manager (ILOM)存在未明漏洞,远程认证用户可以借助未知向量,来访问服务进程并引起拒绝服务攻击(关机或重启);或访问主机操作系统和造成未知影响。
漏洞公告
目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接:
Sun Sun Netra T5440 0
Sun 136938-02
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-136938-02-1
Sun SPARC Enterprise T5120 Server 0
Sun 136932-05
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-136932-05-1
Sun Sun Blade T6320 0
Sun 136933-07
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-136933-07-1
Sun Sun Netra CP3260 0
Sun 136935-03
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-136935-03-1
Sun 139280-02
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-139280-02-1
Sun Sun Netra T5220 0
Sun 136934-06
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-136934-06-1
Sun SPARC Enterprise T5140 Server 0
Sun 136963-08
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-136936-08-1
Sun SPARC Enterprise T5240 Server 0
Sun 136963-08
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-136936-08-1
Sun SPARC Enterprise T5440 Server 0
Sun 136937-02
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-136937-02-1
参考网址
来源: VUPEN
名称: ADV-2008-2890
链接:http://www.frsirt.com/english/advisories/2008/2890
来源: XF
名称: ilom-webinterface-security-bypass(46023)
链接:http://xforce.iss.net/xforce/xfdb/46023
来源: SECTRACK
名称: 1021094
链接:http://www.securitytracker.com/id?1021094
来源: BID
名称: 31861
链接:http://www.securityfocus.com/bid/31861
来源: SUNALERT
名称: 243486
链接:http://sunsolve.sun.com/search/document.do?assetkey=1-26-243486-1
来源: SECUNIA
名称: 32298
链接:http://secunia.com/advisories/32298
受影响实体
- Sun Integrated_lights-Out_manager
补丁
暂无
评论