CVE-2007-5170

Summary

CVE	CVE-2007-5170
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2007-10-01 20:17:00 UTC
Updated	2017-07-29 01:33:00 UTC
Description	Unspecified vulnerability in the embedded service processor (SP) before 3.09 in Sun Fire X2100 M2 and X2200 M2 Embedded Lights Out Manager (ELOM) allows remote attackers to send arbitrary network traffic and use ELOM as a spam proxy.

Risk And Classification

Problem Types: CWE-264

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Sun	Embedded Lights Out Manager	All	All	All	All
Application	Sun	Embedded Lights Out Manager	All	All	All	All
Hardware	Sun	Sun Fire	x2100m2	All	All	All
Hardware	Sun	Sun Fire	x2200m2	All	All	All
Hardware	Sun	Sun Fire	x2100m2	All	All	All
Hardware	Sun	Sun Fire	x2200m2	All	All	All

References

Reference	Source	Link	Tags
IBM X-Force Exchange	XF	exchange.xforce.ibmcloud.com
200051	SUNALERT	sunsolve.sun.com	Vendor Advisory
Sun Fire X2100 / X2200 Embedded Lights Out Manager Security Bypass - Advisories - Secunia	SECUNIA	secunia.com	Vendor Advisory
Sun Fire X2100 M2 And X2200 M2 ELOM Unauthorized Access Vulnerability	BID	www.securityfocus.com
102942	SUNALERT	sunsolve.sun.com	Patch
40832	OSVDB	osvdb.org
Sun Fire Server Embedded Lights Out Manager Software Lets Remote Users Send SPAM via the System - SecurityTracker	SECTRACK	securitytracker.com
Webmail : Solution de messagerie professionnelle - OVHcloud- OVH	VUPEN	www.vupen.com	Vendor Advisory
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.