CVE-2007-0661

Severity

54%

Complexity

55%

Confidentiality

106%

The IPMI configuration does not appear to be the cause, but an extra condition for when it's possible. This is the reason for medium access complexity.

Intel Enterprise Southbridge 2 Baseboard Management Controller (BMC), Intel Server Boards 5000XAL, S5000PAL, S5000PSL, S5000XVN, S5000VCL, S5000VSA, SC5400RA, and OEM Firmware for Intel Enterprise Southbridge Baseboard Management Controller before 20070119, when Intelligent Platform Management Interface (IPMI) is enabled, allow remote attackers to connect and issue arbitrary IPMI commands, possibly triggering a denial of service.

The IPMI configuration does not appear to be the cause, but an extra condition for when it's possible. This is the reason for medium access complexity.

CVSS 2.0 Base Score 5.4. CVSS Attack Vector: adjacent_network. CVSS Attack Complexity: medium. CVSS Vector: (AV:A/AC:M/Au:N/C:P/I:P/A:P).

Overview

Type

Intel

First reported 18 years ago

2007-02-01 22:28:00

Last updated 13 years ago

2011-03-08 02:50:00

Affected Software

Intel Enterprise Southbridge 2 BMC

Intel Server Boards S5000PAL

Intel Server Boards S5000PSL

Intel Server Boards S5000VCL

Intel Server Boards S5000VSA

Intel Server Boards 5000XAL

Intel Server Boards S5000XVN

Intel Server Boards SC5400RA

References

http://lz1.intel.com/psirt/advisory.aspx?intelid=INTEL-SA-00012&languageid=en-fr

Patch, Vendor Advisory

33044

23989

Vendor Advisory

22341

ADV-2007-0432

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.