Rapid7 Vulnerability & Exploit Database

RHSA-2011:1814: ipmitool security update

Back to Search

RHSA-2011:1814: ipmitool security update

Severity
4
CVSS
(AV:L/AC:L/Au:N/C:N/I:P/A:P)
Published
12/14/2011
Created
07/25/2018
Added
12/16/2011
Modified
07/04/2017

Description

The ipmitool package contains a command line utility for interfacing withdevices that support the Intelligent Platform Management Interface (IPMI)specification. IPMI is an open standard for machine health, inventory, andremote power control.It was discovered that the IPMI event daemon (ipmievd) created its processID (PID) file with world-writable permissions. A local user could use thisflaw to make the ipmievd init script kill an arbitrary process when theipmievd daemon is stopped or restarted. (CVE-2011-4339)All users of ipmitool are advised to upgrade to this updated package, whichcontains a backported patch to correct this issue. After installing thisupdate, the IPMI event daemon (ipmievd) will be restarted automatically.

Solution(s)

  • redhat-upgrade-ipmitool
  • redhat-upgrade-ipmitool-debuginfo

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;