[ale] Anyone using Supermicro motherboards?
James Taylor
James.Taylor at eastcobbgroup.com
Thu Jun 26 11:31:55 EDT 2014
Yep.
>>> Chris Fowler <cfowler at outpostsentinel.com> 6/26/2014 11:20 AM >>>
On 06/26/2014 11:06 AM, James Taylor wrote:
> >From the latest SANS Bulletin...
> -jt
>
> ID: N/A
> Title: Supermicro Server Motherboard Credential Disclosure Vulnerability
> Vendor: Supermicro
> Description: Supermicro motherboards store administrator passwords in
> plain text, which is available to any attacker who can connect to TCP
> port 49152.
> CVSS v2 Base Score: 10.0 (AV:N/AC:L/AU:N/C:C/I:C/A:C)
>
>
That must be for their IPMI interface.
_______________________________________________
Ale mailing list
Ale at ale.org
http://mail.ale.org/mailman/listinfo/ale
See JOBS, ANNOUNCE and SCHOOLS lists at
http://mail.ale.org/mailman/listinfo
If this is an unsolicited spam message, please click this link to report it: http://control.eastcobbgroup.com:49285/contents/spamreport.shtml?rptid=52248&srvid=16vl15t
More information about the Ale
mailing list