Back to search

IPMI 2.0 Cipher Type Zero Authentication Bypass Vulnerability

Severity CVSS Published Added Modified
10 (AV:N/AC:L/Au:N/C:C/I:C/A:C) February 11, 2004 July 05, 2013 December 22, 2013

Available Exploits 

Description

The IPMI 2.0 specification supports a cipher with identifier 0. Many vendors have implemented this cipher, which allows for complete bypass of the IPMI authentication process.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

ipmi-change