Unrated severityNVD Advisory· Published Nov 17, 2008· Updated Apr 23, 2026
CVE-2008-5099
CVE-2008-5099
Description
Sun Logical Domain Manager (aka LDoms Manager or ldm) 1.0 through 1.0.3 displays the value of the OpenBoot PROM (OBP) security-password variable in cleartext, which allows local users to bypass the SPARC firmware's password protection, and gain privileges or obtain data access, via the "ldm ls -l" command, a different vulnerability than CVE-2008-4992.
Affected products
4cpe:2.3:a:sun:logical_domain_manager:1.0.1:_nil_:sparc:*:*:*:*:*+ 3 more
- cpe:2.3:a:sun:logical_domain_manager:1.0.1:_nil_:sparc:*:*:*:*:*
- cpe:2.3:a:sun:logical_domain_manager:1.0.2:_nil_:sparc:*:*:*:*:*
- cpe:2.3:a:sun:logical_domain_manager:1.0.3:_nil_:sparc:*:*:*:*:*
- cpe:2.3:a:sun:logical_domain_manager:1.0:_nil_:sparc:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
11- sunsolve.sun.com/search/document.donvdPatchVendor Advisory
- sunsolve.sun.com/search/document.donvdPatchVendor Advisory
- secunia.com/advisories/32674nvdVendor Advisory
- sunsolve.sun.com/search/document.donvdVendor Advisory
- sunsolve.sun.com/search/document.donvdVendor Advisory
- securitytracker.com/idnvd
- sunsolve.sun.com/search/document.donvd
- support.avaya.com/elmodocs2/security/ASA-2008-460.htmnvd
- www.securityfocus.com/bid/32286nvd
- www.vupen.com/english/advisories/2008/3154nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/46594nvd
News mentions
0No linked articles in our index yet.