CVE-2011-2307 - Unspecified vulnerability in Oracle SysFW 8.1.0.a in various Oracle SPARC T3, Netra SPARC T3, Sun Fi

CVE-2011-2307

Summary

Unspecified vulnerability in Oracle SysFW 8.1.0.a in various Oracle SPARC T3, Netra SPARC T3, Sun Fire, and Sun Blade servers allows remote attackers to affect confidentiality, integrity, and availability, related to Sun Integrated Lights Out Manager (ILOM). Per: http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html 'CVE-2011-2307: Specific products affected are: SPARC T3-1, SPARC T3-1B, SPARC T3-2, SPARC T3-4, Netra SPARC T3-1, Netra SPARC T3-1B, Sun Fire X4170 M2, Sun Fire X4270 M2, Sun Blade x6270 M2, Sun Fire x4470, Sun Fire x4470 M2'

References

Vulnerable Configurations

cpe:2.3:a:oracle:sysfw:8.1.0.a:*:*:*:*:*:*:*
cpe:2.3:a:oracle:sysfw:8.1.0.a:*:*:*:*:*:*:*
cpe:2.3:h:oracle:netra_sparc_t3-1:-:*:*:*:*:*:*:*
cpe:2.3:h:oracle:netra_sparc_t3-1:-:*:*:*:*:*:*:*
cpe:2.3:h:oracle:netra_sparc_t3-1b:-:*:*:*:*:*:*:*
cpe:2.3:h:oracle:netra_sparc_t3-1b:-:*:*:*:*:*:*:*
cpe:2.3:h:oracle:sparc_t3-1:-:*:*:*:*:*:*:*
cpe:2.3:h:oracle:sparc_t3-1:-:*:*:*:*:*:*:*
cpe:2.3:h:oracle:sparc_t3-1b:-:*:*:*:*:*:*:*
cpe:2.3:h:oracle:sparc_t3-1b:-:*:*:*:*:*:*:*
cpe:2.3:h:oracle:sparc_t3-2:-:*:*:*:*:*:*:*
cpe:2.3:h:oracle:sparc_t3-2:-:*:*:*:*:*:*:*
cpe:2.3:h:oracle:sparc_t3-4:-:*:*:*:*:*:*:*
cpe:2.3:h:oracle:sparc_t3-4:-:*:*:*:*:*:*:*
cpe:2.3:h:oracle:sun_blade_x6270_m2:-:*:*:*:*:*:*:*
cpe:2.3:h:oracle:sun_blade_x6270_m2:-:*:*:*:*:*:*:*
cpe:2.3:h:oracle:sun_fire_x4170_m2:-:*:*:*:*:*:*:*
cpe:2.3:h:oracle:sun_fire_x4170_m2:-:*:*:*:*:*:*:*
cpe:2.3:h:oracle:sun_fire_x4270_m2:-:*:*:*:*:*:*:*
cpe:2.3:h:oracle:sun_fire_x4270_m2:-:*:*:*:*:*:*:*
cpe:2.3:h:oracle:sun_fire_x4470:-:*:*:*:*:*:*:*
cpe:2.3:h:oracle:sun_fire_x4470:-:*:*:*:*:*:*:*
cpe:2.3:h:oracle:sun_fire_x4470_m2:-:*:*:*:*:*:*:*
cpe:2.3:h:oracle:sun_fire_x4470_m2:-:*:*:*:*:*:*:*

CVSS

Base:	7.5 (as of 05-10-2011 - 02:54)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:P/A:P

refmap via4

cert	TA11-201A
confirm	http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html

Last major update

05-10-2011 - 02:54

Published

21-07-2011 - 00:55

Last modified

05-10-2011 - 02:54