Vulnerabilities > CVE-2011-2299 - Remote vulnerability in Oracle Sun SPARC Enterprise M Series

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

oracle

NVD

Published: 2011-07-21

Updated: 2011-10-05

Summary

Unspecified vulnerability in Oracle SPARC Enterprise M3000, M4000, M5000, M8000, and M9000 XCP 1101 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to XSCF Control Package (XCP).

Vulnerable Configurations

Part	Description	Count
Application	Oracle Oracle XCP *	1
Hardware	Oracle Oracle Sparc Enterprise M3000 Server - Oracle Sparc Enterprise M4000 Server - Oracle Sparc Enterprise M5000 Server - Oracle Sparc Enterprise M8000 Server - Oracle Sparc Enterprise M9000 Server -	5

References

http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html
http://www.us-cert.gov/cas/techalerts/TA11-201A.html