Vulnerabilites related to sun - scapp
cve-2008-5685
Vulnerability from cvelistv5
Published
2008-12-19 17:00
Modified
2024-08-07 11:04
Severity ?
EPSS score ?
Summary
Sun ScApp firmware 5.18.x, 5.19.x, and 5.20.0 through 5.20.10 on Sun Fire and Netra platforms allows remote attackers to access the System Controller (SC), the system console, and possibly the host OS, and cause a denial of service (shutdown or reboot), via spoofed IP packets.
References
| ▼ | URL | Tags |
|---|---|---|
| http://www.securityfocus.com/bid/32805 | vdb-entry, x_refsource_BID | |
| http://securitytracker.com/id?1021392 | vdb-entry, x_refsource_SECTRACK | |
| http://sunsolve.sun.com/search/document.do?assetkey=1-21-114527-12-1 | x_refsource_CONFIRM | |
| http://sunsolve.sun.com/search/document.do?assetkey=1-26-246746-1 | vendor-advisory, x_refsource_SUNALERT | |
| http://sunsolve.sun.com/search/document.do?assetkey=1-77-1019814.1-1 | vendor-advisory, x_refsource_SUNALERT | |
| http://www.vupen.com/english/advisories/2008/3440 | vdb-entry, x_refsource_VUPEN | |
| http://secunia.com/advisories/33158 | third-party-advisory, x_refsource_SECUNIA |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T11:04:44.110Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "32805",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/32805"
},
{
"name": "1021392",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://securitytracker.com/id?1021392"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-21-114527-12-1"
},
{
"name": "246746",
"tags": [
"vendor-advisory",
"x_refsource_SUNALERT",
"x_transferred"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-246746-1"
},
{
"name": "1019814",
"tags": [
"vendor-advisory",
"x_refsource_SUNALERT",
"x_transferred"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-77-1019814.1-1"
},
{
"name": "ADV-2008-3440",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2008/3440"
},
{
"name": "33158",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/33158"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2008-12-12T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Sun ScApp firmware 5.18.x, 5.19.x, and 5.20.0 through 5.20.10 on Sun Fire and Netra platforms allows remote attackers to access the System Controller (SC), the system console, and possibly the host OS, and cause a denial of service (shutdown or reboot), via spoofed IP packets."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2008-12-30T10:00:00",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "32805",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/32805"
},
{
"name": "1021392",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://securitytracker.com/id?1021392"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-21-114527-12-1"
},
{
"name": "246746",
"tags": [
"vendor-advisory",
"x_refsource_SUNALERT"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-246746-1"
},
{
"name": "1019814",
"tags": [
"vendor-advisory",
"x_refsource_SUNALERT"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-77-1019814.1-1"
},
{
"name": "ADV-2008-3440",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2008/3440"
},
{
"name": "33158",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/33158"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2008-5685",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Sun ScApp firmware 5.18.x, 5.19.x, and 5.20.0 through 5.20.10 on Sun Fire and Netra platforms allows remote attackers to access the System Controller (SC), the system console, and possibly the host OS, and cause a denial of service (shutdown or reboot), via spoofed IP packets."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "32805",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/32805"
},
{
"name": "1021392",
"refsource": "SECTRACK",
"url": "http://securitytracker.com/id?1021392"
},
{
"name": "http://sunsolve.sun.com/search/document.do?assetkey=1-21-114527-12-1",
"refsource": "CONFIRM",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-21-114527-12-1"
},
{
"name": "246746",
"refsource": "SUNALERT",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-246746-1"
},
{
"name": "1019814",
"refsource": "SUNALERT",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-77-1019814.1-1"
},
{
"name": "ADV-2008-3440",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2008/3440"
},
{
"name": "33158",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/33158"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2008-5685",
"datePublished": "2008-12-19T17:00:00",
"dateReserved": "2008-12-19T00:00:00",
"dateUpdated": "2024-08-07T11:04:44.110Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
Vulnerability from fkie_nvd
Published
2008-12-19 17:30
Modified
2024-11-21 00:54
Severity ?
Summary
Sun ScApp firmware 5.18.x, 5.19.x, and 5.20.0 through 5.20.10 on Sun Fire and Netra platforms allows remote attackers to access the System Controller (SC), the system console, and possibly the host OS, and cause a denial of service (shutdown or reboot), via spoofed IP packets.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| sun | scapp | 5.18 | |
| sun | scapp | 5.19 | |
| sun | scapp | 5.20.0 | |
| sun | scapp | 5.20.1 | |
| sun | scapp | 5.20.2 | |
| sun | scapp | 5.20.3 | |
| sun | scapp | 5.20.4 | |
| sun | scapp | 5.20.5 | |
| sun | scapp | 5.20.6 | |
| sun | scapp | 5.20.7 | |
| sun | scapp | 5.20.8 | |
| sun | scapp | 5.20.9 | |
| sun | scapp | 5.20.10 | |
| sun | netra | 1280 | |
| sun | netra | 1290 | |
| sun | sun_fire | 3800 | |
| sun | sun_fire | 4800 | |
| sun | sun_fire | 4810 | |
| sun | sun_fire | 6800 | |
| sun | sun_fire | e2900 | |
| sun | sun_fire | e4900 | |
| sun | sun_fire | e6900 | |
| sun | sun_fire | v1280 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:sun:scapp:5.18:*:*:*:*:*:*:*",
"matchCriteriaId": "28A2551B-1787-40A5-AB51-6177A64AA46C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:sun:scapp:5.19:*:*:*:*:*:*:*",
"matchCriteriaId": "25F877F4-682F-46D1-9F81-70C1FAF16A57",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:sun:scapp:5.20.0:*:*:*:*:*:*:*",
"matchCriteriaId": "0E9C8979-3A8D-4805-90B9-FD20F5153651",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:sun:scapp:5.20.1:*:*:*:*:*:*:*",
"matchCriteriaId": "189EF850-2D37-4290-AC8C-B858C7C40471",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:sun:scapp:5.20.2:*:*:*:*:*:*:*",
"matchCriteriaId": "5D2BBB49-5C60-4D88-8007-F10697A04636",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:sun:scapp:5.20.3:*:*:*:*:*:*:*",
"matchCriteriaId": "0F6DF9B4-1E0D-49DB-81EC-193E980334CB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:sun:scapp:5.20.4:*:*:*:*:*:*:*",
"matchCriteriaId": "6FF9935A-851D-4B79-B8C7-F98C08FD9F0B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:sun:scapp:5.20.5:*:*:*:*:*:*:*",
"matchCriteriaId": "316FCB5A-F03B-4D42-88D3-7CF75AB66CC0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:sun:scapp:5.20.6:*:*:*:*:*:*:*",
"matchCriteriaId": "D474BDB0-23BD-48E9-AF53-14E45B5D6B4B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:sun:scapp:5.20.7:*:*:*:*:*:*:*",
"matchCriteriaId": "E58F2F5B-C150-4A91-9E67-3A718D35E7E1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:sun:scapp:5.20.8:*:*:*:*:*:*:*",
"matchCriteriaId": "9DF6CD6B-C732-45F1-ACE5-989CB62FBB2E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:sun:scapp:5.20.9:*:*:*:*:*:*:*",
"matchCriteriaId": "54C75370-48FF-4062-B82E-784DFE38E352",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:sun:scapp:5.20.10:*:*:*:*:*:*:*",
"matchCriteriaId": "4C5CFDC9-0FEB-47E4-B934-34594E11CCBE",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:sun:netra:1280:*:*:*:*:*:*:*",
"matchCriteriaId": "78C85E7E-BE58-4E4F-8D3D-D9532C60A0FC",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:sun:netra:1290:*:*:*:*:*:*:*",
"matchCriteriaId": "FD91C95B-01C7-4F4B-B3DB-5863389C4B62",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:sun:sun_fire:3800:*:*:*:*:*:*:*",
"matchCriteriaId": "91D5F2D6-D0BF-4D6A-AB19-5C1301D71E8A",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:sun:sun_fire:4800:*:*:*:*:*:*:*",
"matchCriteriaId": "D964A21B-E067-4D89-A5E0-339817CB8544",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:sun:sun_fire:4810:*:*:*:*:*:*:*",
"matchCriteriaId": "6759A24A-8ED7-4C60-92ED-2CE3D95DF6A3",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:sun:sun_fire:6800:*:*:*:*:*:*:*",
"matchCriteriaId": "3F5F659A-CAA8-488C-8C67-B95984055803",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:sun:sun_fire:e2900:*:*:*:*:*:*:*",
"matchCriteriaId": "8A7FBA86-D5E3-40CC-8B0E-19911A9053B2",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:sun:sun_fire:e4900:*:*:*:*:*:*:*",
"matchCriteriaId": "6E6972D4-6DB6-4885-9083-7F79ED64CF04",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:sun:sun_fire:e6900:*:*:*:*:*:*:*",
"matchCriteriaId": "43826816-BA22-4BD9-9943-4924F9E5FDCE",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:sun:sun_fire:v1280:*:*:*:*:*:*:*",
"matchCriteriaId": "0C258A35-787A-49FF-A7C4-39B11747EBF9",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Sun ScApp firmware 5.18.x, 5.19.x, and 5.20.0 through 5.20.10 on Sun Fire and Netra platforms allows remote attackers to access the System Controller (SC), the system console, and possibly the host OS, and cause a denial of service (shutdown or reboot), via spoofed IP packets."
},
{
"lang": "es",
"value": "Sun ScApp firmware 5.18.x, 5.19.x, y 5.20.0 hasta la 5.20.10 en plataformas Sun Fire y Netra permite a atacantes remotos acceder al Controlador del Sistema(SC), a la consola del sistema y, posiblemente, al sistema operativo anfitri\u00f3n, y causar una denegaci\u00f3n de servicio (mediante apagado o reinicio), a trav\u00e9s de paquetes con IPs falsas."
}
],
"evaluatorImpact": "Note: This issue only impacts systems that have a System Controller V2 without SSH enabled.",
"id": "CVE-2008-5685",
"lastModified": "2024-11-21T00:54:38.593",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 10.0,
"obtainAllPrivilege": true,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2008-12-19T17:30:03.250",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/33158"
},
{
"source": "cve@mitre.org",
"url": "http://securitytracker.com/id?1021392"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-21-114527-12-1"
},
{
"source": "cve@mitre.org",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-246746-1"
},
{
"source": "cve@mitre.org",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-77-1019814.1-1"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/bid/32805"
},
{
"source": "cve@mitre.org",
"url": "http://www.vupen.com/english/advisories/2008/3440"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/33158"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://securitytracker.com/id?1021392"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-21-114527-12-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-246746-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-77-1019814.1-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/32805"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.vupen.com/english/advisories/2008/3440"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}