CVE-2009-0171

Currently unrated

Key Information:

Vendor: Oracle
Status: Sparc Enterprise Server
Vendor: CVE Published:; 16 January 2009

Summary

The Sun SPARC Enterprise M4000 and M5000 Server, within a certain range of serial numbers, allows remote attackers to use the manufacturing root password, perform a root login to the eXtended System Control Facility Unit (aka XSCFU or Service Processor), and have unspecified other impact.

References

http://www.vupen.com/english/advisories/2009/0207

vdb-entryx_refsource_VUPEN

http://www.securityfocus.com/bid/33280

vdb-entryx_refsource_BID

http://www.securitytracker.com/id?1021602

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jan 16, 2009
Vulnerability Reserved
Jan 16, 2009