CVE-2009-0171

Опубликовано: 16 янв. 2009

Источник: nvd

CVSS2: 10

EPSS Низкий

Описание

The Sun SPARC Enterprise M4000 and M5000 Server, within a certain range of serial numbers, allows remote attackers to use the manufacturing root password, perform a root login to the eXtended System Control Facility Unit (aka XSCFU or Service Processor), and have unspecified other impact.

Ссылки

http://sunsolve.sun.com/search/document.do?assetkey=1-26-249126-1
Vendor Advisory
http://www.securityfocus.com/bid/33280
http://www.securitytracker.com/id?1021602
http://www.vupen.com/english/advisories/2009/0207
Vendor Advisory
http://sunsolve.sun.com/search/document.do?assetkey=1-26-249126-1
Vendor Advisory
http://www.securityfocus.com/bid/33280
http://www.securitytracker.com/id?1021602
http://www.vupen.com/english/advisories/2009/0207
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:h:sun:sparc_enterprise_server:m4000:*:*:*:*:*:*:*

cpe:2.3:h:sun:sparc_enterprise_server:m5000:*:*:*:*:*:*:*

EPSS

Процентиль: 74%

0.00837

Низкий

10 Critical

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-p84c-99fg-m976

github

почти 4 года назад