Vulnerabilities > CVE-2013-3838 - SPARC Enterprise T & M Series Servers Security vulnerability in Oracle Sun Products Suite

CVSS 4.0 - MEDIUM

Attack vector

LOCAL

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

local

high complexity

oracle

NVD

Published: 2013-10-16

Updated: 2013-10-16

Summary

Unspecified vulnerability in Oracle SPARC Enterprise T & M Series Servers running Sun System Firmware before 6.7.13 for SPARC T1, 7.4.6.c for SPARC T2, 8.3.0.b for SPARC T3 & T4, 9.0.0.d for SPARC T5 and 9.0.1.e for SPARC M5 allows local users to affect availability via unknown vectors related to Sun System Firmware/Hypervisor. Per: http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html "CVE-2013-3838 applies to Sun System Firmware before 6.7.13 for SPARC T1, 7.4.6.c for SPARC T2, 8.3.0.b for SPARC T3 & T4, 9.0.0.d for SPARC T5 and 9.0.1.e for SPARC M5."+

Vulnerable Configurations

Part	Description	Count
OS	Oracle Oracle SUN System Firmware *	1
Hardware	Oracle Oracle Sparc Enterprise M8000 Server - Oracle Sparc Enterprise M9000 Server - Oracle Sparc T3 1 - Oracle Sparc T3 1B - Oracle Sparc T3 2 - Oracle Sparc T3 3 - Oracle Sparc T3 4 - Oracle Sparc T4 1 - Oracle Sparc T4 1B - Oracle Sparc T4 2 - Oracle Sparc T4 4 -	11

References

http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html