Sun Ipmitool Interface Remote Unauthorized Access Vulnerability
BID:22859
Info
Sun Ipmitool Interface Remote Unauthorized Access Vulnerability
| Bugtraq ID: | 22859 |
| Class: | Access Validation Error |
| CVE: |
CVE-2007-1346 |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 07 2007 12:00AM |
| Updated: | May 12 2015 07:33PM |
| Credit: | The vendor reported this issue. |
| Vulnerable: |
Sun Sun Fire X4600 M2 0 Sun Sun Fire X2200 M2 Server 0 |
| Not Vulnerable: | |
Discussion
Sun Ipmitool Interface Remote Unauthorized Access Vulnerability
Sun Ipmitool is prone to a remote unauthorized-access vulnerability.
Successful exploits will grant attackers access to administrative functionality that may be used to cause denial-of-service conditions on local or remote Sun Fire servers using the affected application.
This issue affects only the Sun Fire X2100M2 and Sun Fire X2200M2 without BMC/SP Firmware 2.9.
Sun Ipmitool is prone to a remote unauthorized-access vulnerability.
Successful exploits will grant attackers access to administrative functionality that may be used to cause denial-of-service conditions on local or remote Sun Fire servers using the affected application.
This issue affects only the Sun Fire X2100M2 and Sun Fire X2200M2 without BMC/SP Firmware 2.9.
Exploit / POC
Sun Ipmitool Interface Remote Unauthorized Access Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Sun Ipmitool Interface Remote Unauthorized Access Vulnerability
Solution:
Sun has released an advisory and fixes to address this issue. Please see the references for more information.
Sun Sun Fire X4600 M2 0
Sun Sun Fire X2200 M2 Server 0
Solution:
Sun has released an advisory and fixes to address this issue. Please see the references for more information.
Sun Sun Fire X4600 M2 0
-
Sun Sun Fire X2100 M2 Server 1.4 Image
http://www.sun.com/servers/entry/x2100/downloads.jsp
Sun Sun Fire X2200 M2 Server 0
-
Sun Sun Fire X2200 M2 Server 1.4 Image
http://www.sun.com/servers/x64/x2200/downloads.jsp
References
Sun Ipmitool Interface Remote Unauthorized Access Vulnerability
References:
References:
- Sun Homepage (Sun Microsystems )
- Sun Alert - 102828: Security Vulnerability in the ipmitool(1m) Interface to the (Sun Microsystems)