SPARC Hypervisor Memory Access Flaw in Sun System Firmware
CVE-2008-4992

Currently unrated

Key Information:

Vendor: Oracle
Status: Fire Enterprise Server T2000; Blade T6320 Server; Sparc Enterprise Server T5220; Netra T2000 Server
Vendor: CVE Published:; 7 November 2008

Summary

The SPARC hypervisor in Sun System Firmware versions 6.6.3 to 6.6.5 and 7.1.3 to 7.1.3.e on UltraSPARC T1, T2, and T2+ processors contains a vulnerability that enables logical domain users to access memory belonging to other logical domains. This access occurs through unknown vectors, potentially compromising sensitive data across the environments. Organizations utilizing these firmware versions should assess their security measures to mitigate unauthorized access risks.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/46407

vdb-entryx_refsource_XF

http://www.securitytracker.com/id?1021153

vdb-entryx_refsource_SECTRACK

http://secunia.com/advisories/32582

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Nov 7, 2008
Vulnerability Reserved
Nov 7, 2008