CVE-2008-5099 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2008-5099
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-5099

Description: Sun Logical Domain Manager (aka LDoms Manager or ldm) 1.0 through 1.0.3 displays the value of the OpenBoot PROM (OBP) security-password variable in cleartext, which allows local users to bypass the SPARC firmware's password protection, and gain privileges or obtain data access, via the "ldm ls -l" command, a different vulnerability than CVE-2008-4992.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/46594 SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-243606-1 ST 1021224 SAID Secunia Advisory: SA32674 CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2008-460.htm http://sunsolve.sun.com/search/document.do?assetkey=1-21-139398-01-1 http://sunsolve.sun.com/search/document.do?assetkey=1-21-139397-02-1 http://sunsolve.sun.com/search/document.do?assetkey=1-21-139396-02-1 http://sunsolve.sun.com/search/document.do?assetkey=1-21-139395-02-1 BID 32286

Return to the previous page.