Vulnerabilities > SUN > Sparc Enterprise Server

DATE CVE VULNERABILITY TITLE RISK
2009-01-16 CVE-2009-0171 Permissions, Privileges, and Access Controls vulnerability in SUN Sparc Enterprise Server M4000/M5000
The Sun SPARC Enterprise M4000 and M5000 Server, within a certain range of serial numbers, allows remote attackers to use the manufacturing root password, perform a root login to the eXtended System Control Facility Unit (aka XSCFU or Service Processor), and have unspecified other impact.
network
low complexity
sun CWE-264
critical
 10.0
10
2008-03-18 CVE-2008-1369 Permissions, Privileges, and Access Controls vulnerability in SUN Sunos 5.10
A certain incorrect Sun Solaris 10 image on SPARC Enterprise T5120 and T5220 servers has /etc/default/login and /etc/ssh/sshd_config files that configure root logins in a manner unintended by the vendor, which allows remote attackers to gain privileges via unspecified vectors.
network
low complexity
sun CWE-264
critical
 10.0
10
2007-12-15 CVE-2007-6360 Denial Of Service vulnerability in Sun SPARC XSCF Control Package (XCP) Firmware
Unspecified vulnerability in the Sun eXtended System Control Facility (XSCF) Control Package (XCP) firmware before 1050 on SPARC Enterprise M4000, M5000, M8000, and M9000 servers allows remote attackers to cause a denial of service (reboot) via (1) telnet, (2) ssh, or (3) http network traffic that triggers memory exhaustion.
network
low complexity
sun
7.8
7.8