Secunia

Customer Area icon help

Need help?

Try CSI

Download PSI icon Scan now

Scan Now

Community

Advisories

Database Search Advisories by Product Advisories by Vendor Terminology Report vulnerability

Research Forum My Profile Our Commitment

Community Login

Register now
Forgot password?

Secunia Advisory SA29529

Sun SPARC Enterprise T5120 and T5220 Servers Insecure Configuration

Secunia Advisory

SA29529

Track and eliminate the complete Vulnerability threat lifecycle

GET ACCESS

Track critical vulnerabilities affecting your infrastucture instantly

GET ACCESS

Release Date

2008-03-26

Popularity

5,439 views

Comments

0 comments

Criticality level

Less critical

Impact

Exposure of sensitive information
Exposure of system information
Security Bypass

Where

From remote

Authentication level

Available in Customer Area

Report reliability

Available in Customer Area

Solution Status

Vendor Workaround

Systems affected

Available in Customer Area

Approve distribution

Available in Customer Area

Operating System

Sun Solaris 10

Secunia CVSS Score

Available in Customer Area

CVE Reference(s)

CVE-2008-1369 CVSS available in Customer Area

Description
A security issue has been reported in some Sun SPARC Enterprise T5120 and T5220 Servers, which can be exploited by malicious users to bypass certain security restrictions

The problem is that servers with datecode prior to BEL07480000 were shipped with an insecure Solaris 10 configuration.

The security issue only affects Sun SPARC Enterprise T5120 and T5220 Servers with datecode prior to BEL07480000.

Solution
The vendor has provided workarounds to secure the device. Please see the vendor's advisory for details.

Provided and/or discovered by
Reported by the vendor.

Original Advisory
Sun (231244):
http://sunsolve.sun.com/search/document.do?assetkey=1-66-231244-1

Alternate/detailed remediation
Further details available in Customer Area

Deep Links
Links available in Customer Area

Do you have additional information related to this advisory?

Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this information to vuln@secunia.com

Subject: Sun SPARC Enterprise T5120 and T5220 Servers Insecure Configuration

No posts yet

You must be logged in to post a comment.

Latest advisories

New advisories: 16
New vulnerabilities: 38
Updated advisories: 20

232 views
DotNetNuke Cross-Site Scripting Vulnerability

169 views
Nensor CMS File Inclusion Vulnerabilities

143 views
Sahana Disaster Management System Authentication Security Bypass

141 views
Joomla VXDate Component SQL Injection and Cross-Site Scripting Vulnerabilities

190 views
ManageEngine ServiceDesk Plus "woID" SQL Injection Vulnerability

271 views
IBM DB2 Content Manager Information Integrator Security Issue

163 views
Drupal Email Input Filter Module PHP Code Execution Vulnerability

135 views
Drupal Tag Order Module Script Insertion Vulnerability

171 views
Transmission "tr_magnetParse()" Magnet Parsing Buffer Overflows

See all