Description
The firmware for Intelligent Platform Management Interface (IPMI) 1.5-based Intel Server Boards and Platforms is shipped with an Authentication Type Enables parameter set to an invalid None parameter, which allows remote attackers to obtain sensitive information when LAN management functionality is enabled.
References (6)
Core 6
Core References
Various Sources x_refsource_misc
http://support.intel.com/support/motherboards/server/sb/CS-010422.htm
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/4978
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/15775
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/10068
Vendor Advisory x_refsource_confirm
ftp://download.intel.com/support/motherboards/server/sb/aa6791invalidlanconfiguration040504.pdf
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/11315
Scores
EPSS
0.0114
EPSS Percentile
78.7%
Details
Status
published
Products (25)
hp/carrier_grade_server_cc2300
a6898a
hp/carrier_grade_server_cc2300
a6899a
hp/carrier_grade_server_cc3300
a6900a
hp/carrier_grade_server_cc3300
a6901a
hp/carrier_grade_server_cc3310
a9862a
hp/carrier_grade_server_cc3310
a9863a
intel/carrier_grade_server_tigpr2u
intel/carrier_grade_server_tsrlt2
intel/carrier_grade_server_tsrmt2
intel/cli_auto-configuration_utility
... and 15 more
Published
Dec 31, 2004
Tracked Since
Feb 18, 2026