Sun Microsystems, Inc.  Sun System Handbook - ISO 3.4 June 2011 Internal/Partner Edition
   Home | Current Systems | Former STK Products | EOL Systems | Components | General Info | Search | Feedback

Asset ID: 1-77-1001007.1
Update Date:2011-01-27
Keywords:
Solution Type  Sun Alert Sure

Solution  1001007.1 :   Security Vulnerabilities in Early Versions of Sun SPARC Enterprise M4000/M5000/M8000/M9000 XSCF Control Package (XCP) firmware may Result in a Denial of Service (DoS) Condition  

Related Items 
    

  • Sun SPARC Enterprise M9000-32 Server
    •  
  • Sun SPARC Enterprise M9000-64 Server
    •  
  • Sun SPARC Enterprise M8000 Server
    •  
  • Sun SPARC Enterprise M4000 Server
    •  
  • Sun SPARC Enterprise M5000 Server
    •  
Related Categories 
    

  • GCS>Sun Microsystems>Sun Alert>Criteria Category>Security
    •  
  • GCS>Sun Microsystems>Sun Alert>Release Phase>Resolved
    •  

PreviouslyPublishedAs
201333 


Product

Sun SPARC Enterprise M9000 Server

Sun SPARC Enterprise M8000 Server

Sun SPARC Enterprise M4000 Server

Sun SPARC Enterprise M5000 Server



Date of Resolved Release

04-DEC-2007



Impact


Security vulnerabilities with
telnet(1), Secure Shell (SSH), and httpd in the Sun SPARC Enterprise
M4000/M5000/M8000/M9000 XSCF Control Package (XCP) firmware versions
prior to 1050 may allow a remote unprivileged user to cause a Denial of
Service (DoS).



Contributing Factors


This issue can occur on the
following platforms:


    

  • SPARC Enterprise M4000/M5000/M8000/M9000 servers with XSCF
Control Package (XCP) firmware versions prior to 1050.
    • 



To determine the version of XCP
firmware installed on a system, the following command can be used at
the XSCF> prompt:


    XSCF> version -c xcp
    XSCF#0 (Active )
    XCP0 (Current): 1050
    XCP1 (Reserve): 1050
    XSCF>


If the value under "Current" is
less than 1050, the system may be vulnerable to this issue.



Symptoms


If the described issue occurs,
the eXtended System Control Facility (XSCF) response may degrade and
the XSCF will reboot whenever an "Out of Memory" condition occurs.
Issues connecting to the XSCF may also be experienced.



Workaround


There is no workaround for this
issue.  Please see the Resolution section below.



Resolution


This issue is addressed in the
following releases:


    

  • XCP version 1050 or later for SPARC Enterprise
M4000/M5000/M8000/M9000 servers
    • 



My Oracle Support XCP firmware
links are available from the Oracle Firmware Download page at:






 Previously Published As

 103159

 Internal Comments

6574635 - telnet vulnerability where it is possible to initiate a
large 

number of telnet connections against the XSCF and cause the XSCF to 

experience out-of-memory conditions.


6548161 - SSH vulnerability where it is possible to issue an infinite 

number of remote SSH commands to the XSCF and cause the XSCF to 

experience resource allocation issues.

6546970 - httpd vulnerability where large numbers of requests can 

trigger httpd to spawn additional processes causing the XSCF to
experience 

out-of-memory conditions.


All of these vulnerabilities are related to 

the configuration of these services 

on the "XSCF" and are not due to issues with the services themselves.

 Internal Contributor/submitter

 [email protected]

 Internal Eng Business Unit Group

 SSG ES (Enterprise Systems)

 Internal Eng Responsible Engineer

 [email protected]

 Internal Services Knowledge Engineer

 [email protected]

 Internal Sun Alert Kasp Legacy ID

 103159



References

<SUNBUG: 6574635>

<SUNBUG: 6546970>

<SUNBUG: 6548161>



Attachments

This solution has no attachment


















       

Copyright © 2011 Sun Microsystems, Inc.  All rights reserved.

 Feedback