CVE-2011-2288

Unspecified vulnerability in Sun Integrated Lights Out Manager (ILOM) in SysFW 8.1.0.a and earlier for various Oracle SPARC T3, SPARC Netra T3, Sun Blade, and Sun Fire servers allows remote attackers to affect confidentiality, integrity, and availability, related to ILOM.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html	Patch Vendor Advisory
http://www.us-cert.gov/cas/techalerts/TA11-201A.html	US Government Resource

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:oracle:sysfw:6.7:::::::*
	cpe:2.3:a:oracle:sysfw:6.6:::::::*
	cpe:2.3:h:oracle:sparc_t3-1b:-:::::::*
	cpe:2.3:h:oracle:sparc_t3-4:-:::::::*
	cpe:2.3:a:oracle:sysfw:7.3:::::::*
	cpe:2.3:a:oracle:sysfw:7.2:::::::*
	cpe:2.3:a:oracle:sysfw:6.3:::::::*
	cpe:2.3:a:oracle:sysfw:6.2:::::::*
	cpe:2.3:a:oracle:sysfw:6.1:::::::*
	cpe:2.3:a:oracle:sysfw::::::::
	cpe:2.3:h:oracle:sparc_t3-2:-:::::::*
	cpe:2.3:a:oracle:sysfw:6.0:::::::*
	cpe:2.3:a:oracle:sysfw:6.5:::::::*
	cpe:2.3:a:oracle:sysfw:8.0.3:b::::::
	cpe:2.3:a:oracle:sysfw:8.1:::::::*
	cpe:2.3:a:oracle:sysfw:6.4:::::::*
	cpe:2.3:a:oracle:sysfw:7.1:::::::*
	cpe:2.3:a:oracle:sysfw:7.0:::::::*
	cpe:2.3:h:oracle:sparc_t3-1:-:::::::*
	cpe:2.3:h:oracle:netra_sparc_t3-1b:-:::::::*
	cpe:2.3:a:oracle:sysfw:8.0:::::::*
	cpe:2.3:a:oracle:sysfw:7.4:::::::*
	cpe:2.3:h:oracle:netra_sparc_t3-1:-:::::::*

Information

Published : 2011-07-20 17:55

Updated : 2011-10-04 19:54

NVD link : CVE-2011-2288

Mitre link : CVE-2011-2288

JSON object : View

CWE

NVD-CWE-noinfo

Advertisement

Products Affected

oracle

sparc_t3-4
sysfw
sparc_t3-1
sparc_t3-2
netra_sparc_t3-1
netra_sparc_t3-1b
sparc_t3-1b

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html", "name": "http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html", "tags": ["Patch", "Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "http://www.us-cert.gov/cas/techalerts/TA11-201A.html", "name": "TA11-201A", "tags": ["US Government Resource"], "refsource": "CERT"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Unspecified vulnerability in Sun Integrated Lights Out Manager (ILOM) in SysFW 8.1.0.a and earlier for various Oracle SPARC T3, SPARC Netra T3, Sun Blade, and Sun Fire servers allows remote attackers to affect confidentiality, integrity, and availability, related to ILOM."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2011-2288", "ASSIGNER": "secalert_us@oracle.com"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2011-07-21T00:55Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:oracle:sysfw:6.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:sysfw:6.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:oracle:sparc_t3-1b:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:oracle:sparc_t3-4:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:sysfw:7.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:sysfw:7.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:sysfw:6.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:sysfw:6.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:sysfw:6.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:sysfw:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "8.1.0.a"}, {"cpe23Uri": "cpe:2.3:h:oracle:sparc_t3-2:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:sysfw:6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:sysfw:6.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:sysfw:8.0.3:b:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:sysfw:8.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:sysfw:6.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:sysfw:7.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:sysfw:7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:oracle:sparc_t3-1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:oracle:netra_sparc_t3-1b:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:sysfw:8.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:sysfw:7.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:oracle:netra_sparc_t3-1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2011-10-05T02:54Z"}