Remote Access Vulnerability in Sun Integrated Lights-Out Manager Products
CVE-2008-4722

Currently unrated

Key Information:

Vendor: Oracle
Status: Integrated Lights-out Manager; Blade 6000 Modular System With Chassis; Blade 6048 Modular System With Chassis; Blade 8000 Modular System
Vendor: CVE Published:; 23 October 2008

Summary

The vulnerability in Sun Integrated Lights-Out Manager (ILOM) versions 2.0.1.5 through 2.0.4.26 enables remote authenticated users to exploit the system. Attackers can gain unauthorized access to the service processor (SP), leading to potential denial of service incidents by shutting down or rebooting the system. Furthermore, they might access the host operating system, resulting in an unspecified impact. This situation underscores the importance of timely patching and securing remote access to prevent unauthorized manipulation and system downtime.

References

http://www.vupen.com/english/advisories/2008/2890

vdb-entryx_refsource_VUPEN

https://exchange.xforce.ibmcloud.com/vulnerabilities/46023

vdb-entryx_refsource_XF

http://www.securitytracker.com/id?1021094

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Oct 23, 2008
Vulnerability Reserved
Oct 23, 2008