Arbitrary Network Traffic Vulnerability in Sun Fire X2100 and X2200 Embedded Lights Out Manager
CVE-2007-5170

Currently unrated

Key Information:

Vendor: Oracle
Status: Embedded Lights Out Manager
Vendor: CVE Published:; 1 October 2007

What is CVE-2007-5170?

An unspecified vulnerability exists in the embedded service processor within the Sun Fire X2100 M2 and X2200 M2 models, affecting versions of the Embedded Lights Out Manager (ELOM) prior to 3.09. This flaw enables remote attackers to send arbitrary network traffic, potentially turning ELOM into a spam proxy, thus facilitating unspecified malicious activities. Proper updates and mitigations are advised to safeguard these devices.

References

http://sunsolve.sun.com/search/document.do?assetkey=1-26-...

vendor-advisoryx_refsource_SUNALERT

http://osvdb.org/40832

vdb-entryx_refsource_OSVDB

http://secunia.com/advisories/27027

third-party-advisoryx_refsource_SECUNIA

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 1, 2007
Vulnerability Reserved
Oct 1, 2007

Oracle

What is CVE-2007-5170?

References

Timeline