CVE-2013-4784

HP Integrated Lights-Out BMC - Unauthenticated Authentication Bypass via Cipher Zero

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2013-4784. PoCs published by alexoslabs.

AI-analyzed exploit summary This repository contains a Bash script that tests for the IPMI cipher type zero authentication bypass vulnerability (CVE-2013-4784). It uses `ipmitool` to exploit the vulnerability by sending a request with cipher suite 0 and an arbitrary password to bypass authentication and retrieve administrative session information.

Description

The HP Integrated Lights-Out (iLO) BMC implementation allows remote attackers to bypass authentication and execute arbitrary IPMI commands by using cipher suite 0 (aka cipher zero) and an arbitrary password.

Exploits (1)

nomisec WORKING POC

by alexoslabs · poc

https://github.com/alexoslabs/ipmitest

View Code ZIP pw:eip

This repository contains a Bash script that tests for the IPMI cipher type zero authentication bypass vulnerability (CVE-2013-4784). It uses `ipmitool` to exploit the vulnerability by sending a request with cipher suite 0 and an arbitrary password to bypass authentication and retrieve administrative session information.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: IPMI (Intelligent Platform Management Interface) with vulnerable implementations

No auth needed

Prerequisites: ipmitool installed · network access to target IPMI interface

MITRE ATT&CK