—–BEGIN PGP SIGNED MESSAGE—–
Liebe Kolleginnen und Kollegen,
soeben erreichte uns nachfolgendes Sun Security Advisory. Wir geben
diese Informationen unveraendert an Sie weiter.
Bitte beachten Sie, dass dies ein Update des Advisories ist, das die
folgenden Aenderungen betrifft:
Mit diesem Update erweitert Sun die Liste der betroffenen Systeme um
Sun Netra CT900 ATCA Blade Server
6732655 – Schwachstelle im Sun Integrated Lights-out Manager.
Der Sun Integrated Lights-out Manager beinhaltet eine Schwachstelle im
Webinterface, die das Umgehen der Passwortauthentifizierung
ermoeglicht. Ein Angreifer, der sich so Zugriff auf das System
verschafft hat, kann einen Server ausschalten bzw. neu starten oder
ueber das Webinterface Zugang zum Hostbetriebssystem erhalten.
Betroffen sind die folgenden Software Pakete und Plattformen:
* Sun SPARC Enterprise T5120 Server mit Firmware 7.1.6 (ILOM 2.0.4.26)
oder aelter
* Sun SPARC Enterprise T5220 Server mit Firmware 7.1.6 (ILOM 2.0.4.26)
oder aelter
* Sun SPARC Enterprise T5140 Server mit Firmware 7.1.6 (ILOM 2.0.4.26)
oder aelter
* Sun SPARC Enterprise T5240 Server mit Firmware 7.1.6 (ILOM 2.0.4.26)
oder aelter
* Sun SPARC Enterprise T5440 Server mit Firmware 7.1.5.b (ILOM
2.0.4.25) oder aelter
* Sun Blade T6320 Server Module mit Firmware 7.1.6 (ILOM 2.0.4.26)
oder aelter
* Sun Netra T5220 Server mit Firmware 7.1.6 (ILOM 2.0.4.26) oder aelter
* Sun Netra T5440 Server mit Firmware 7.1.4.a (ILOM 2.0.4.24.a) oder aelter
* Sun Netra CP3260/CT900 ATCA Blade Server mit Firmware 7.1.6 (ILOM
2.0.4.26) oder aelter
* Sun Fire X4100 Server mit SW 1.5.1 (ILOM 2.0.2.5 build 32265) oder aelter
* Sun Fire X4200 Server mit SW 1.5.1 (ILOM 2.0.2.5 build 32265) oder aelter
* Sun Fire X4100M2 Server mit SW 2.1 (ILOM 2.0.2.10 build 35249) oder
aelter
* Sun Fire X4200M2 Server mit SW 2.1 (ILOM 2.0.2.10 build 35249) oder
aelter
* Sun Fire X4600 Server mit SW 1.4 (ILOM 2.0.2.5 build 32265) oder aelter
* Sun Fire X4600M2 Server mit SW 2.1.2 (ILOM 2.0.2.5 build 32591)
oderaelter
* Sun Fire X4500 Server mit SW 1.5 (ILOM 2.0.2.5 build 34717) oder aelter
* Sun Fire X4540 Server mit SW 1.0 (ILOM 2.0.2.5 build 32394)
* Sun Fire X4140 Server mit SW 2.1 (ILOM 2.0.2.5 build 34) oder aelter
* Sun Fire X4240 Server mit SW 2.1 (ILOM 2.0.2.5 build 34) oder aelter
* Sun Fire X4440 Server mit SW 2.1 (ILOM 2.0.2.5 build 34) oder aelter
* Sun Fire X2250 Server mit SW 1.1 (ILOM 2.0.2.8 build 33864) oder aelter
* Sun Fire X4150 Server mit SW 2.0 (ILOM 2.0.2.6 build 35128) oder aelter
* Sun Fire X4250 Server mit SW 1.1 (ILOM 2.0.2.6 build 35128) oder aelter
* Sun Fire X4450 Server mit SW 2.1.0 (ILOM 2.0.2.6 Build 36202) oder aelter
* Sun Blade 6000 Modular System mit Chassis 2.0 (ILOM 2.0.3.3 build
33795) oder aelter
* Sun Blade 6048 Modular System mit Chassis 2.0 (ILOM 2.0.3.3 build
33795) oder aelter
* Sun Blade X6220 mit Server Module Software 2.0 (ILOM 2.0.3.3 build
34514) oder aelter
* Sun Blade X6250 mit Server Module Software 2.0 (ILOM 2.0.3.6 build
36279)
* Sun Blade X6450 mit Server Module Software 2.0 (ILOM 2.0.3.6 build
36472)
* Sun Blade 8000 Modular System mit Software 2.1.1 (ILOM 2.0.1.8) oder
aelter
* Sun Blade 8000P Modular System mit Software 2.1.1 (ILOM 2.0.1.8)oder
aelter
* Sun Blade X8400 mit Software 2.0.2 (ILOM 2.0.1.5) oder aelter
* Sun Blade X8420 mit Software 2.0.2 (ILOM 2.0.1.5) oder aelter
* Sun Blade X8440 mit Software 2.0.2 (ILOM 2.0.1.5) oder aelter
* Sun Blade X8450 mit Software 2.1 (ILOM 2.0.1.7) oder aelter
* Sun Netra X4200M2 Server mit SW 2.1 (ILOM 2.0.5.2 build 35521) oder
aelter
* Sun Netra X4250 Server mit SW 1.1 (ILOM 2.0.2.6 build 35369) oder aelter
* Sun Netra X4450 mit SW 1.1 (ILOM 2.0.2.6 build 35369) oder aelter
Sun SPARC Enterprise T5120 Server
Sun SPARC Enterprise T5220 Server
Sun SPARC Enterprise T5140 Server
Sun SPARC Enterprise T5240 Server
Sun SPARC Enterprise T5440 Server
Sun Blade T6320
Sun Netra T5220
Sun Netra T5440
Sun Netra CP3260/CT900
Sun Fire X2250
Sun Fire X4100
Sun Fire X4100 M2
Sun Fire X4140
Sun Fire X4150
Sun Fire X4200
Sun Fire X4200 M2
Sun Fire X4240
Sun Fire X4250
Sun Fire X4440
Sun Fire X4450
Sun Fire X4500
Sun Fire X4540
Sun Fire X4600
Sun Fire X4600 M2
Sun Blade X6000
Sun Blade X6048
Sun Blade X6220
Sun Blade X6250
Sun Blade X6450
Sun Blade X8000
Sun Blade X8000 P
Sun Blade X8400
Sun Blade X8420
Sun Blade X8440
Sun Blade X8450
Sun Netra X4200 M2
Sun Netra X4250
Sun Netra X4450
Vom Hersteller werden ueberarbeitete Pakete zur Verfuegung gestellt.
Hersteller Advisory:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-243486-1
(c) der deutschen Zusammenfassung bei DFN-CERT Services GmbH; die
Verbreitung, auch auszugsweise, ist nur unter Hinweis auf den Urheber,
DFN-CERT Services GmbH, und nur zu nicht kommerziellen Zwecken
gestattet.
Mit freundlichen Gruessen,
Michael Groening, DFN-CERT
– —
Michael Groening (Incident Response Team), +49 40 808077-555
DFN-CERT Services GmbH, https://www.dfn-cert.de, Phone +49 40 808077-555
Sitz / Register: Hamburg, AG Hamburg, HRB 88805, Ust-IdNr.: DE 232129737
Sachsenstrasse 5, 20097 Hamburg/Germany, CEO: Dr. Klaus-Peter Kossakowski
Automatische Warnmeldungen https://www.cert.dfn.de/autowarn
Solution Type Sun Alert
Solution 243486 : A Security Vulnerability in the Sun Integrated
Lights-Out Manager (ILOM) may Allow Unauthorized Access Through the Web
Interface
Related Categories
* Home>Content>Sun Alert Criteria Categories>Security
* Home>Content>Sun Alert Release Phase>Resolved
Bug ID
6732655
Product
Sun SPARC Enterprise T5120 Server
Sun SPARC Enterprise T5220 Server
Sun SPARC Enterprise T5140 Server
Sun SPARC Enterprise T5240 Server
Sun SPARC Enterprise T5440 Server
Sun Blade T6320
Sun Netra T5220
Sun Netra T5440
Sun Netra CP3260
Sun Netra CT900 ATCA Blade Server
Sun Fire X2250
Sun Fire X4100
Sun Fire X4100 M2
Sun Fire X4140
Sun Fire X4150
Sun Fire X4200
Sun Fire X4200 M2
Sun Fire X4240
Sun Fire X4250
Sun Fire X4440
Product
Sun Fire X4450
Sun Fire X4500
Sun Fire X4540
Sun Fire X4600
Sun Fire X4600 M2
Sun Blade X6000
Sun Blade X6048
Sun Blade X6220
Sun Blade X6250
Sun Blade X6450
Sun Blade X8000
Sun Blade X8000 P
Sun Blade X8400
Sun Blade X8420
Sun Blade X8440
Sun Blade X8450
Sun Netra X4200 M2
Sun Netra X4250
Sun Netra X4450
Date of Resolved Release
21-Oct-2008
SA Document Body
A security vulnerability in the Sun Integrated Lights-Out Manager (ILOM):
1. Impact
A security vulnerability in the Sun Integrated Lights-Out Manager
(ILOM) may allow unprivileged users who have access to the ILOM web
interface to gain unauthorized access to the service processor (SP).
This may allow such users to power off or reset the system which is a
type of Denial of Service (DoS).
On Sun servers and Sun Blades, this issue may also allow unprivileged
users who have access to the ILOM web interface to gain unauthorized
access to the host operating system.
2. Contributing Factors
This issue can occur on the following platforms:
* Sun SPARC Enterprise T5120 Server with firmware 7.1.6 (ILOM
2.0.4.26) or earlier
* Sun SPARC Enterprise T5220 Server with firmware 7.1.6 (ILOM
2.0.4.26) or earlier
* Sun SPARC Enterprise T5140 Server with firmware 7.1.6 (ILOM
2.0.4.26) or earlier
* Sun SPARC Enterprise T5240 Server with firmware 7.1.6 (ILOM
2.0.4.26) or earlier
* Sun SPARC Enterprise T5440 Server with firmware 7.1.5.b (ILOM
2.0.4.25) or earlier
* Sun Blade T6320 Server Module with firmware 7.1.6 (ILOM 2.0.4.26)
or earlier
* Sun Netra T5220 Server with firmware 7.1.6 (ILOM 2.0.4.26) or
earlier
* Sun Netra T5440 Server with firmware 7.1.4.a (ILOM 2.0.4.24.a) or
earlier
* Sun Netra CP3260/CT900 ATCA Blade Server with firmware 7.1.6 (ILOM
2.0.4.26) or earlier
* Sun Fire X4100 Server with SW 1.5.1 (ILOM 2.0.2.5 build 32265) or
earlier
* Sun Fire X4200 Server with SW 1.5.1 (ILOM 2.0.2.5 build 32265) or
earlier
* Sun Fire X4100M2 Server with SW 2.1 (ILOM 2.0.2.10 build 35249) or
earlier
* Sun Fire X4200M2 Server with SW 2.1 (ILOM 2.0.2.10 build 35249) or
earlier
* Sun Fire X4600 Server with SW 1.4 (ILOM 2.0.2.5 build 32265) or
earlier
* Sun Fire X4600M2 Server with SW 2.1.2 (ILOM 2.0.2.5 build 32591) or
earlier
* Sun Fire X4500 Server with SW 1.5 (ILOM 2.0.2.5 build 34717) or
earlier
* Sun Fire X4540 Server with SW 1.0 (ILOM 2.0.2.5 build 32394)
* Sun Fire X4140 Server with SW 2.1 (ILOM 2.0.2.5 build 34) or
earlier
* Sun Fire X4240 Server with SW 2.1 (ILOM 2.0.2.5 build 34) or
earlier
* Sun Fire X4440 Server with SW 2.1 (ILOM 2.0.2.5 build 34) or
earlier
* Sun Fire X2250 Server with SW 1.1 (ILOM 2.0.2.8 build 33864) or
earlier
* Sun Fire X4150 Server with SW 2.0 (ILOM 2.0.2.6 build 35128) or
earlier
* Sun Fire X4250 Server with SW 1.1 (ILOM 2.0.2.6 build 35128) or
earlier
* Sun Fire X4450 Server with SW 2.1.0 (ILOM 2.0.2.6 Build 36202) or
earlier
* Sun Blade 6000 Modular System with Chassis 2.0 (ILOM 2.0.3.3 build
33795) or earlier
* Sun Blade 6048 Modular System with Chassis 2.0 (ILOM 2.0.3.3 build
33795) or earlier
* Sun Blade X6220 with Server Module Software 2.0 (ILOM 2.0.3.3 build
34514) or earlier
* Sun Blade X6250 with Server Module Software 2.0 (ILOM 2.0.3.6 build
36279)
* Sun Blade X6450 with Server Module Software 2.0 (ILOM 2.0.3.6 build
36472)
* Sun Blade 8000 Modular System with Software 2.1.1 (ILOM 2.0.1.8) or
earlier
* Sun Blade 8000P Modular System with Software 2.1.1 (ILOM 2.0.1.8)
or earlier
* Sun Blade X8400 with Software 2.0.2 (ILOM 2.0.1.5) or earlier
* Sun Blade X8420 with Software 2.0.2 (ILOM 2.0.1.5) or earlier
* Sun Blade X8440 with Software 2.0.2 (ILOM 2.0.1.5) or earlier
* Sun Blade X8450 with Software 2.1 (ILOM 2.0.1.7) or earlier
* Sun Netra X4200M2 Server with SW 2.1 (ILOM 2.0.5.2 build 35521) or
earlier
* Sun Netra X4250 Server with SW 1.1 (ILOM 2.0.2.6 build 35369) or
earlier
* Sun Netra X4450 with SW 1.1 (ILOM 2.0.2.6 build 35369) or earlier
To determine the ILOM firmware version installed on your system, use
the “version” command in the ILOM command-line interface:
SP firmware 2.0.2.5
SP firmware build number: 32265
SP firmware date: Fri Apr 25 20:35:59 PDT 2008
SP filesystem version: 0.1.14
The first line of the above output provides the ILOM version. The
second line provides the build number for that ILOM version.
3. Symptoms
There are no predictable symptoms to indicate that this issue has been
exploited to gain unauthorized remote access to the SP or the system.
4. Workaround
To work around the described issue until the firmware upgrades are
applied, disable the ILOM web interface by logging into ILOM though the
command line interface as a user with admin privileges and run the
following commands:
set /SP/services/http servicestate=disabled
set /SP/services/https servicestate=disabled
5. Resolution
New system firmware versions are available for impacted platforms to
address this vulnerability.
For SPARC platforms, new system firmware is available though SunSolve
patches. See the list below for the SunSolve patch id for each SPARC
platform:
SPARC Platform
* Sun SPARC Enterprise T5120/T5220 Server with patch 136932-05 (SysFW
7.1.6.d, ILOM 2.0.4.26.d) or later
* Sun SPARC Enterprise T5140/T5240 Server with patch 136936-08 (SysFW
7.1.6.d, ILOM 2.0.4.26.d) or later
* Sun SPARC Enterprise T5440 Server with patch 136937-02 (SysFW
7.1.5.c, ILOM 2.0.4.25.a) or later
* Sun Blade T6320 Server Module with patch 136933-07 (SysFW 7.1.6.d,
ILOM 2.0.4.26.d) or later
* Sun Netra T5220 Server with patch 136934-06 (SysFW 7.1.6.d, ILOM
2.0.4.26.d) or later
* Sun Netra T5440 Server with patch 136938-02 (SysFW 7.1.6.e, ILOM
2.0.4.26.e) or later
* Sun Netra CP3260 ATCA Blade Server with patch 136935-03 (SysFW
7.1.6.f, ILOM 2.0.4.26.f) or later
* Sun Netra CT900 ATCA Blade Server (Sun Netra CP3260 ATCA Blade:
SysFW 7.1.6.f, ILOM 2.0.4.26.f) with patch 139280-02 or later
For x64 platforms, new system firmware is available for download at:
* http://www.sun.com/servers
See the platform names below for specific system firmware and link
information:
Sun Fire X4100/X4200/X4100M2/X4200M2
* Sun Fire X4100 Server with SW 1.5.2 (ILOM 2.0.2.5 build 37165) or
later
* Sun Fire X4200 Server with SW 1.5.2 (ILOM 2.0.2.5 build 37165) or
later
* Sun Fire X4100M2 Server with SW 2.1.1 (ILOM 2.0.2.10 build 37108)
or later
* Sun Fire X4200M2 Server with SW 2.1.1 (ILOM 2.0.2.10 build 37108)
or later
http://www.sun.com/servers/x64/x4100/downloads
Sun Fire X4600/X4600M2
* Sun Fire X4600 Server with SW 1.4.1 (ILOM 2.0.2.5 build 37165) or
later
* Sun Fire X4600M2 Server with SW 2.1.3 (ILOM 2.0.2.5 build 37115) or
later
http://www.sun.com/servers/x64/x4600/downloads.jsp
Sun Fire X4500
* Sun Fire X4500 Server with SW 1.5.1 (ILOM 2.0.2.5 build 37042) or
later
http://www.sun.com/servers/x64/x4500/downloads.jsp
Sun Fire X4540
* Sun Fire X4540 Server with SW 1.0.1 (ILOM 2.0.2.5 build 37049) or
later
http://www.sun.com/servers/x64/x4540/downloads.jsp
Sun Fire X4140
* Sun Fire X4140 Server with SW 2.1.1 (ILOM 2.0.2.5 build 37) or
later
http://www.sun.com/servers/x64/x4140/downloads.jsp
Sun Fire X4240
* Sun Fire X4240 Server with SW 2.1.1 (ILOM 2.0.2.5 build 37) or
later
http://www.sun.com/servers/x64/x4240/downloads.jsp
Sun Fire X4440
* Sun Fire X4440 Server with SW 2.1.1 (ILOM 2.0.2.5 build 37) or
later
http://www.sun.com/servers/x64/x4440/downloads.jsp
Sun Fire X2250
* Sun Fire X2250 Server with SW 1.1.1 (ILOM 2.0.2.12 build 37040) or
later
http://www.sun.com/servers/x64/x2250/downloads.jsp
Sun Fire X4150
* Sun Fire X4150 Server with SW 2.1.0 (ILOM 2.0.2.6 build 36843) or
later
http://www.sun.com/servers/x64/x4150/downloads.jsp
Sun Fire X4250
* Sun Fire X4250 Server with SW 1.2.0 (ILOM 2.0.2.6 build 36843) or
later
http://www.sun.com/servers/x64/x4250/downloads.jsp
Sun Fire X4450
* Sun Fire X4450 Server with SW 2.2.0 (ILOM 2.0.2.6 build 37007) or
later
http://www.sun.com/servers/x64/x4450/downloads.jsp
Fixes for the following Sun Blade and Blade chassis are available for
download at:
* http://www.sun.com/servers/blades/downloads.jsp
See the platform names below for specific system firmware:
* Sun Blade 6000 Modular System with Chassis 2.1 (ILOM 2.0.3.10 build
38) or later
* Sun Blade 6048 Modular System with Chassis 2.1 (ILOM 2.0.3.10 build
38) or later
* Sun Blade X6220 with Server Module Software 2.1 (ILOM 2.0.3.10
build 38) or later
* Sun Blade X6250 with Server Module Software 2.0.1 (ILOM 2.0.3.6
build 36946) or later
* Sun Blade X6450 with Server Module Software 2.0.1 (ILOM 2.0.3.6
build 36946) or later
* Sun Blade 8000 Server Module with SW 2.2 (ILOM 2.0.1.10) or later
* Sun Blade X8000P Modular System with SW 2.2 (ILOM 2.0.1.10) or
later
* Sun Blade X8400 with Software 2.2 (ILOM 2.0.1.12) or later
* Sun Blade X8420 with Software 2.2 (ILOM 2.0.1.13) or later
* Sun Blade X8440 with Software 2.2 (ILOM 2.0.1.11) or later
* Sun Blade X8450 with Software 2.2 (ILOM 2.0.1.10) or later
Fixes for the following Netra platforms are available for download at:
* http://www.sun.com/servers/netra
See the platform names below for specific system firmware and link
information:
Sun Netra X4200M2
* Sun Netra X4200M2 Server with SW 2.1N (ILOM 2.0.5.3 build 37380)
or later
http://www.sun.com/servers/netra/x4200/support.xml
Sun Netra X4250
* Sun Netra X4250 Server with SW 2.1N (ILOM 2.0.2.6 build 37455) or
later
http://www.sun.com/servers/netra/x4250/support.xml
Sun Netra X4450
* Sun Netra X4450 with SW 2.2N (ILOM 2.0.2.6 build 37455) or later
http://www.sun.com/servers/netra/x4450/support.xml
For more information on Security Sun Alerts, see Technical Instruction
ID 213557.
This Sun Alert notification is being provided to you on an “AS IS”
basis. This Sun Alert notification may contain information provided by
third parties. The issues described in this Sun Alert notification may
or may not impact your system(s). Sun makes no representations,
warranties, or guarantees as to the information contained herein. ANY
AND ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING WITHOUT LIMITATION
WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR
NON-INFRINGEMENT, ARE HEREBY DISCLAIMED. BY ACCESSING THIS DOCUMENT YOU
ACKNOWLEDGE THAT SUN SHALL IN NO EVENT BE LIABLE FOR ANY DIRECT,
INDIRECT, INCIDENTAL, PUNITIVE, OR CONSEQUENTIAL DAMAGES THAT ARISE OUT
OF YOUR USE OR FAILURE TO USE THE INFORMATION CONTAINED HEREIN. This
Sun Alert notification contains Sun proprietary and confidential
information. It is being provided to you pursuant to the provisions of
your agreement to purchase services from Sun, or, if you do not have
such an agreement, the Sun.com Terms of Use. This Sun Alert
notification may only be used for the purposes contemplated by these
agreements.
Copyright 2000-2008 Sun Microsystems, Inc., 4150 Network Circle, Santa
Clara, CA 95054 U.S.A. All rights reserved.
Modification History
03-Nov-2008: Updated Product, Contributing Factors, and Resolution sections.
Attachments
This solution has no attachment
—–BEGIN PGP SIGNATURE—–
Version: GnuPG v1.4.2 (GNU/Linux)
iQEVAwUBSRxM+0hXCWfrVVdXAQFGPwf/VXHgMS5cZvhfbI+p2jCvWh76gsuoTzkq
fm2aMnwfpvLoR3kiuU9rJPg0ehWPSQatALHToq7DuW5Rt+CLqMRjk8h9uHho9j2K
Sb07c1J9buorfcwTwwfmMpOc7rImFB6xrSqkRnkwIHXXHunHW7a1qoty0FwXaTEx
mIxPgWYOYirwkiOlnjVcGJQPTdJxFsMvvt95SejFuDtpSy6dcX37xEyWB2rPsFa4
Ulq1XxzMhmsMv/Pb9vlYcvbmnD3jWTcQdkq/Y3VGlzydHimc+PS9FDF8aqDh5zQN
lWVx4AiGBSmu39Z4wpp8aniC56ua0Wb1CZqQU9WwXvqf24wwfD5JsA==
=dhi/
—–END PGP SIGNATURE—–
