RSS   Vulnerabilities for 'X8sit-f'   RSS

2013-09-07
 
CVE-2013-3609

CWE-20
 

 
The web interface in the Intelligent Platform Management Interface (IPMI) implementation on Supermicro H8DC*, H8DG*, H8SCM-F, H8SGL-F, H8SM*, X7SP*, X8DT*, X8SI*, X9DAX-*, X9DB*, X9DR*, X9QR*, X9SBAA-F, X9SC*, X9SPU-F, and X9SR* devices relies on JavaScript code on the client for authorization checks, which allows remote authenticated users to bypass intended access restrictions via a crafted request, related to the PrivilegeCallBack function.

 
 
CVE-2013-3608

CWE-20
 

 
The web interface in the Intelligent Platform Management Interface (IPMI) implementation on Supermicro H8DC*, H8DG*, H8SCM-F, H8SGL-F, H8SM*, X7SP*, X8DT*, X8SI*, X9DAX-*, X9DB*, X9DR*, X9QR*, X9SBAA-F, X9SC*, X9SPU-F, and X9SR* devices allows remote authenticated users to execute arbitrary commands via shell metacharacters, as demonstrated by the IP address field in config_date_time.cgi.

 
 
CVE-2013-3607

CWE-119
 

 
Multiple stack-based buffer overflows in the web interface in the Intelligent Platform Management Interface (IPMI) implementation on Supermicro H8DC*, H8DG*, H8SCM-F, H8SGL-F, H8SM*, X7SP*, X8DT*, X8SI*, X9DAX-*, X9DB*, X9DR*, X9QR*, X9SBAA-F, X9SC*, X9SPU-F, and X9SR* devices allow remote attackers to execute arbitrary code on the Baseboard Management Controller (BMC), as demonstrated by the (1) username or (2) password field in login.cgi.

 

 >>> Vendor: Supermicro 576 Products
BMC
Intelligent platform management interface
H8dcl-6f
H8dcl-if
H8dct-hibqf
H8dct-hln4f
H8dct-ibqf
H8dg6-f
H8dgg-qf
H8dgi-f
H8dgt-hf
H8dgt-hibqf
H8dgt-hlf
H8dgt-hlibqf
H8dgu-f
H8dgu-ln4f+
H8scm-f
H8sgl-f
H8sme-f
H8sml-7
H8sml-7f
H8sml-i
H8sml-if
X7spa-hf
X7spa-hf-d525
X7spe-h-d525
X7spe-hf
X7spe-hf-d525
X7spt-df-d525
X7spt-df-d525+
X8dtl-3f
X8dtl-6f
X8dtl-if
X8dtn+-f
X8dtn+-f-lr
X8dtu-6f+
X8dtu-6f+-lr
X8dtu-6tf+
X8dtu-6tf+-lr
X8dtu-ln4f+
X8dtu-ln4f+-lr
X8si6-f
X8sia-f
X8sie-f
X8sie-ln4f
X8sil-f
X8sit-f
X8sit-hf
X8siu-f
X9dax-7f
X9dax-7f-hft
X9dax-7tf
X9dax-if
X9dax-if-hft
X9dax-itf
X9db3-f
X9db3-tpf
X9dbi-f
X9dbi-tpf
X9dbl-3f
X9dbl-if
X9dbu-3f
X9dbu-if
X9dr3-f
X9dr3-ln4f+
X9dr7-ln4f
X9dr7-ln4f-jbod
X9dr7-tf+
X9drd-7jln4f
X9drd-7ln4f
X9drd-7ln4f-jbod
X9drd-ef
X9drd-if
X9dre-ln4f
X9dre-tf+
X9drff
X9drff-7
X9drff-7+
X9drff-7g+
X9drff-7t+
X9drff-7tg+
X9drff-i+
X9drff-ig+
X9drff-it+
X9drff-itg+
X9drfr
X9drg-hf
X9drg-hf+
X9drg-htf
X9drg-htf+
X9drh-7f
X9drh-7tf
X9drh-if
X9drh-itf
X9dri-f
X9dri-ln4f+
X9drl-3f
X9drl-ef
X9drl-if
X9drt-f
See all Products for Vendor Supermicro


Copyright 2024, cxsecurity.com

 

Back to Top