CVE-2009-1290

IBM Advanced Management Module - Cross-Site Request Forgery via Private Blade Power Action Script

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-1290. PoCs published by Henri Lindberg.

AI-analyzed exploit summary This HTML-based PoC exploits a CSRF vulnerability in IBM BladeCenter Advanced Management Module, allowing an attacker to perform unauthorized actions (e.g., power control) by tricking an authenticated user into submitting a crafted form. The exploit leverages a lack of CSRF tokens and demonstrates a real-world attack scenario.

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in the web administration interface in the Advanced Management Module (AMM) on the IBM BladeCenter, including the BladeCenter H with BPET36H 54, allow remote attackers to hijack the authentication of administrators, as demonstrated by a power-off request to the private/blade_power_action script.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Henri Lindberg · htmlwebappsmultiple

https://www.exploit-db.com/exploits/32896

View Code ZIP pw:eip

This HTML-based PoC exploits a CSRF vulnerability in IBM BladeCenter Advanced Management Module, allowing an attacker to perform unauthorized actions (e.g., power control) by tricking an authenticated user into submitting a crafted form. The exploit leverages a lack of CSRF tokens and demonstrates a real-world attack scenario.

Classification

Working Poc 90%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: IBM BladeCenter Advanced Management Module < 1.42U

Auth required

Prerequisites: Victim must be authenticated to the target system · Victim must visit a malicious page or be tricked into submitting the form

MITRE ATT&CK