Vulnerabilities > CVE-2008-5685 - Unspecified vulnerability in SUN Scapp

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

sun

critical

NVD

Published: 2008-12-19

Updated: 2011-03-08

Summary

Sun ScApp firmware 5.18.x, 5.19.x, and 5.20.0 through 5.20.10 on Sun Fire and Netra platforms allows remote attackers to access the System Controller (SC), the system console, and possibly the host OS, and cause a denial of service (shutdown or reboot), via spoofed IP packets. Note: This issue only impacts systems that have a System Controller V2 without SSH enabled.

Vulnerable Configurations

Part	Description	Count
Hardware	Sun SUN Scapp 5.18 SUN Scapp 5.19 SUN Scapp 5.20.0 SUN Scapp 5.20.1 SUN Scapp 5.20.2 SUN Scapp 5.20.3 SUN Scapp 5.20.4 SUN Scapp 5.20.5 SUN Scapp 5.20.6 SUN Scapp 5.20.7 SUN Scapp 5.20.8 SUN Scapp 5.20.9 SUN Scapp 5.20.10 SUN Netra 1280 SUN Netra 1290 SUN SUN Fire 3800 SUN SUN Fire 4800 SUN SUN Fire 4810 SUN SUN Fire 6800 SUN SUN Fire E2900 SUN SUN Fire E4900 SUN SUN Fire E6900 SUN SUN Fire V1280	23

Summary

Vulnerable Configurations

References