IPMI vulnerability bug (Informational)

« Back

[#133] IPMI vulnerability bug (Informational)

Posted: 2013-08-18 12:23

Start:
End :

Affects: IPMI enabled servers

There is currently a bug with a high security risc for all servers that have IPMI enabled. This includes HP ILO and Dell iDRAC.

We have currently blocked UDP port 623 to prevent abuse on IPMI enabled servers.

In the next days we will doing scans and on our network and contact our customers if they are vulnerable. We will help them resolve this problem.

Reference: https://community.rapid7.com/community/metasploit/blog/2013/07/02/a-penetration-testers-guide-to-ipmi