Vulnerabilities > CVE-2013-0417 - Remote Sun Storage Common Array Manager (CAM) vulnerability in Oracle SUN products Suite 6.9.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Unspecified vulnerability in the Sun Storage Common Array Manager (CAM) component in Oracle Sun Products Suite 6.9.0 allows remote attackers to affect confidentiality, related to Fault Management System (FMS).
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Nessus
NASL family Solaris Local Security Checks NASL id SOLARIS9_147416.NASL description Vulnerability in the Sun Storage Common Array Manager (CAM) component of Oracle Sun Products Suite (subcomponent: Fault Management System (FMS)). The supported version that is affected is 6.9.0. Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized read access to a subset of Sun Storage Common Array Manager (CAM) accessible data. last seen 2020-06-01 modified 2020-06-02 plugin id 71745 published 2013-12-28 reporter This script is Copyright (C) 2013-2014 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/71745 title Solaris 9 (sparc) : 147416-02 code # # (C) Tenable Network Security, Inc. # # The descriptive text in this plugin was # extracted from the Oracle SunOS Patch Updates. # include("compat.inc"); if (description) { script_id(71745); script_version("$Revision: 1.2 $"); script_cvs_date("$Date: 2014/08/30 00:45:31 $"); script_cve_id("CVE-2013-0417"); script_name(english:"Solaris 9 (sparc) : 147416-02"); script_summary(english:"Check for patch 147416-02"); script_set_attribute( attribute:"synopsis", value:"The remote host is missing Sun Security Patch number 147416-02" ); script_set_attribute( attribute:"description", value: "Vulnerability in the Sun Storage Common Array Manager (CAM) component of Oracle Sun Products Suite (subcomponent: Fault Management System (FMS)). The supported version that is affected is 6.9.0. Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized read access to a subset of Sun Storage Common Array Manager (CAM) accessible data." ); script_set_attribute( attribute:"see_also", value:"https://getupdates.oracle.com/readme/147416-02" ); script_set_attribute( attribute:"solution", value:"You should install this patch for your system to be up-to-date." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris"); script_set_attribute(attribute:"patch_publication_date", value:"2012/12/03"); script_set_attribute(attribute:"plugin_publication_date", value:"2013/12/28"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2013-2014 Tenable Network Security, Inc."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("solaris.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (solaris_check_patch(release:"5.9", arch:"sparc", patch:"147416-02", obsoleted_by:"", package:"SUNWsefms", version:"6.9.0,REV=2011.11.13.21.31.38") < 0) flag++; if (solaris_check_patch(release:"5.9", arch:"sparc", patch:"147416-02", obsoleted_by:"", package:"SUNWstkcamcd", version:"6.9.0,REV=2011.11.13.21.32.51") < 0) flag++; if (solaris_check_patch(release:"5.9", arch:"sparc", patch:"147416-02", obsoleted_by:"", package:"SUNWsesscs", version:"6.9.0,REV=2011.11.13.21.32.51") < 0) flag++; if (solaris_check_patch(release:"5.9", arch:"sparc", patch:"147416-02", obsoleted_by:"", package:"SUNWstkraidsa", version:"6.9.0,REV=2011.11.13.21.31.44") < 0) flag++; if (solaris_check_patch(release:"5.9", arch:"sparc", patch:"147416-02", obsoleted_by:"", package:"SUNWse6130ui", version:"6.9.0,REV=2011.11.13.21.32.51") < 0) flag++; if (flag) { if (report_verbosity > 0) security_warning(port:0, extra:solaris_get_report()); else security_warning(0); exit(0); } audit(AUDIT_HOST_NOT, "affected");NASL family Solaris Local Security Checks NASL id SOLARIS10_147416.NASL description Vulnerability in the Sun Storage Common Array Manager (CAM) component of Oracle Sun Products Suite (subcomponent: Fault Management System (FMS)). The supported version that is affected is 6.9.0. Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized read access to a subset of Sun Storage Common Array Manager (CAM) accessible data. This plugin has been deprecated and either replaced with individual 147416 patch-revision plugins, or deemed non-security related. last seen 2019-02-21 modified 2018-07-30 plugin id 71678 published 2013-12-28 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=71678 title Solaris 10 (sparc) : 147416-02 (deprecated) code # # (C) Tenable Network Security, Inc. # # @DEPRECATED@ # # Disabled on 2018/03/12. Deprecated and either replaced by # individual patch-revision plugins, or has been deemed a # non-security advisory. # include("compat.inc"); if (description) { script_id(71678); script_version("1.5"); script_cvs_date("Date: 2018/07/30 13:40:14"); script_cve_id("CVE-2013-0417"); script_name(english:"Solaris 10 (sparc) : 147416-02 (deprecated)"); script_summary(english:"Check for patch 147416-02"); script_set_attribute( attribute:"synopsis", value:"This plugin has been deprecated." ); script_set_attribute( attribute:"description", value: "Vulnerability in the Sun Storage Common Array Manager (CAM) component of Oracle Sun Products Suite (subcomponent: Fault Management System (FMS)). The supported version that is affected is 6.9.0. Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized read access to a subset of Sun Storage Common Array Manager (CAM) accessible data. This plugin has been deprecated and either replaced with individual 147416 patch-revision plugins, or deemed non-security related." ); script_set_attribute( attribute:"see_also", value:"https://getupdates.oracle.com/readme/147416-02" ); script_set_attribute( attribute:"solution", value:"n/a" ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris"); script_set_attribute(attribute:"patch_publication_date", value:"2012/12/03"); script_set_attribute(attribute:"plugin_publication_date", value:"2013/12/28"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } exit(0, "This plugin has been deprecated. Consult specific patch-revision plugins for patch 147416 instead.");