«
»

Sun Management Center XML Library Multiple Vulnerabilities


Sun Management Center XML Library Multiple Vulnerabilities

SECUNIA ADVISORY ID: SA37555

VERIFY ADVISORY: http://secunia.com/advisories/37555/

DESCRIPTION: Sun has acknowledged some vulnerabilities in Sun Management Center, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the libxml2 library.

For more information: SA31558 SA32773

SOLUTION: Apply patches.

– SPARC Platform –

Sun Management Center 3.6.1 (for Solaris 7): Apply patch 123919-12 or later.

Sun Management Center 3.6.1 (for Solaris 8): Apply patch 123920-12 or later.

Sun Management Center 3.6.1 (for Solaris 9): Apply patch 123921-12 or later.

Sun Management Center 3.6.1 (for Solaris 10): Apply patch 123923-12 or later.

Sun Management Center 4.0 (for Solaris 8): Apply patch 127680-07 or later.

Sun Management Center 4.0 (for Solaris 9): Apply patch 127681-07 or later.

Sun Management Center 4.0 (for Solaris 10): Apply patch 127683-07 or later.

— x86 Platform –

Sun Management Center 3.6.1 (for Solaris 9): Apply patch 123922-11 or later.

Sun Management Center 3.6.1 (for Solaris 10): Apply patch 123924-11 or later.

Sun Management Center 4.0 (for Solaris 9): Apply patch 127682-07 or later.

Sun Management Center 4.0 (for Solaris 10): Apply patch 143324-01 or later.

Users of Sun Management Center 3.61 (EOL) are encouraged to upgrade to SunMC 4.0, which can be downloaded at: http://www.sun.com/software/products/sunmanagementcenter/get.html

ORIGINAL ADVISORY: http://sunsolve.sun.com/search/document.do?assetkey=1-66-266428-1

OTHER REFERENCES: SA31558#2: http://secunia.com/advisories/31558/

SA32773: http://secunia.com/advisories/32773/

———————————————————————-

About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

Subscribe: http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/

Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.

———————————————————————-

Dieser Beitrag wurde am Freitag 4. Dezember 2009, 22:37 unter Bugs / Fehlermeldungen verfasst. Sie können alle Antworten auf diesen Beitrag nachverfolgen mit RSS 2.0. Sie können eine Antwort, oder einen Trackback von Ihrer eigenen Seite hinterlassen.

  1. Bisher keine Kommentare.

Sie müssen angemeldet sein, um einen Beitrag zu verfassen.