The firmware for Intelligent Platform Management Interface (IPMI) 1.5-based Intel Server Boards and Platforms is shipped with an Authentication Type Enables parameter set to an invalid None parameter, which allows remote attackers to obtain sensitive information when LAN management functionality is enabled.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
20 Nov 2024, 23:53
Type | Values Removed | Values Added |
---|---|---|
References | () ftp://download.intel.com/support/motherboards/server/sb/aa6791invalidlanconfiguration040504.pdf - Vendor Advisory | |
References | () http://secunia.com/advisories/11315 - Patch, Vendor Advisory | |
References | () http://support.intel.com/support/motherboards/server/sb/CS-010422.htm - | |
References | () http://www.osvdb.org/4978 - | |
References | () http://www.securityfocus.com/bid/10068 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/15775 - |
Information
Published : 2004-12-31 05:00
Updated : 2024-11-20 23:53
NVD link : CVE-2004-2600
Mitre link : CVE-2004-2600
CVE.ORG link : CVE-2004-2600
JSON object : View
Products Affected
intel
- carrier_grade_server_tsrlt2
- server_platform_spsh4
- server_board_shg2
- server_platform_srsh4
- client_system_setup_utility
- server_board_se7501hg2
- cli_auto-configuration_utility
- server_platform_sr870bn4
- server_board_sds2
- carrier_grade_server_tsrmt2
- entry_server_platform_sr1325tp1-e
- server_platform_sr870bh2
- system_setup_utility
- server_control
- entry_server_board_se7210tp1-e
- carrier_grade_server_tigpr2u
- server_board_scb2
- server_board_se7500wv2
- server_configuration_wizard
hp
- carrier_grade_server_cc2300
- carrier_grade_server_cc3300
- carrier_grade_server_cc3310
CWE