---------------------------------------------------------------------- 2003: 2,700 advisories published 2004: 3,100 advisories published 2005: 4,600 advisories published 2006: 5,300 advisories published How do you know which Secunia advisories are important to you? The Secunia Vulnerability Intelligence Solutions allows you to filter and structure all the information you need, so you can address issues effectively. Get a free trial of the Secunia Vulnerability Intelligence Solutions: http://corporate.secunia.com/how_to_buy/38/vi/?ref=secadv ---------------------------------------------------------------------- TITLE: Sun Management Center Default Account Security Issue SECUNIA ADVISORY ID: SA28151 VERIFY ADVISORY: http://secunia.com/advisories/28151/ CRITICAL: Moderately critical IMPACT: Security Bypass WHERE: >From local network SOFTWARE: Sun Management Center (SunMC) 3.x http://secunia.com/product/1712/ DESCRIPTION: A security issue has been reported in Sun Management Center, which can be exploited by malicious people to bypass certain security restrictions. The problem is caused due to an existing default account within the Oracle database component and can be exploited to gain access to the database and execute arbitrary code with privileges of the Oracle database server. The security issue is reported in Sun Management Center 3.6.1, 3.6, and 3.5 Update 1. SOLUTION: Apply patches. Sun MC 3.5 Update 1 (for Solaris 8): Patch 118388-11 or later http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-118388-11-1 Sun MC 3.5 Update 1 (for Solaris 9): Patch 118389-12 or later http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-118389-12-1 Sun MC 3.6 (for Solaris 8): Patch 127380-01 or later http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-127380-01-1 Sun MC 3.6 (for Solaris 9): Patch 127381-01 or later http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-127381-01-1 Sun MC 3.6 (for Solaris 10): Patch 127383-01 or later http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-127383-01-1 Sun MC 3.6.1 (for Solaris 8): Patch 123920-04 or later Sun MC 3.6.1 (for Solaris 9): Patch 123921-04 or later Sun MC 3.6.1 (for Solaris 10): Patch 123923-04 or later ORIGINAL ADVISORY: http://sunsolve.sun.com/search/document.do?assetkey=1-26-103152-1 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------