Remote Code Execution Vulnerability in Oracle ILOM for SPARC and Sun Servers
CVE-2011-2307

Currently unrated

Key Information:

Vendor: Oracle
Status: Sun Fire X4270 M2; Sparc T3-4; Sparc T3-2; Sysfw
Vendor: CVE Published:; 21 July 2011

What is CVE-2011-2307?

A vulnerability exists in Oracle SysFW 8.1.0.a across various Oracle SPARC T3, Netra SPARC T3, Sun Fire, and Sun Blade servers, allowing remote attackers to exploit weaknesses related to the Sun Integrated Lights Out Manager (ILOM). This could impact the confidentiality, integrity, and availability of these systems, posing a risk to sensitive data and system operations.

References

http://www.us-cert.gov/cas/techalerts/TA11-201A.html

third-party-advisoryx_refsource_CERT

http://www.oracle.com/technetwork/topics/security/cpujuly...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 21, 2011
Vulnerability Reserved
Jun 2, 2011