Vulnerability CVE-2007-0661


Published: 2007-02-01   Modified: 2012-02-12

Description:
Intel Enterprise Southbridge 2 Baseboard Management Controller (BMC), Intel Server Boards 5000XAL, S5000PAL, S5000PSL, S5000XVN, S5000VCL, S5000VSA, SC5400RA, and OEM Firmware for Intel Enterprise Southbridge Baseboard Management Controller before 20070119, when Intelligent Platform Management Interface (IPMI) is enabled, allow remote attackers to connect and issue arbitrary IPMI commands, possibly triggering a denial of service.

CVSS2 => (AV:A/AC:M/Au:N/C:P/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5.4/10
6.4/10
5.5/10
Exploit range
Attack complexity
Authentication
Adjacent network
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial
Affected software
Intel -> Enterprise southbridge 2 bmc 
Intel -> Enterprise southbridge bmc 
Intel -> Server board s5000pal 
Intel -> Server board s5000psl 
Intel -> Server board s5000vcl 
Intel -> Server board s5000vsa 
Intel -> Server board s5000xal 
Intel -> Server board s5000xvn 
Intel -> Server board sc5400ra 

 References:
http://lz1.intel.com/psirt/advisory.aspx?intelid=INTEL-SA-00012&languageid=en-fr
http://www.vupen.com/english/advisories/2007/0432
http://secunia.com/advisories/23989
http://osvdb.org/33044
http://www.securityfocus.com/bid/22341

Copyright 2022, cxsecurity.com

 

Back to Top