Supermicro IPMI/BMC Plaintext Password Disclosure Network Vulnerability

Summary

Supermicro IPMI/BMC Plaintext Password Disclosure

Impact

Successful exploitation will allow attackers to obtain sensitive information that may aid in further attacks

Solution

Ask the vendor for an update.

Insight

BMCs in Supermicro motherboards contain a binary file that stores remote login passwords in clear text. This file could be retrieved by requesting /PSBlock on port 49152

Affected

Motherboards manufactured by Supermicro

Detection

Send a HTTP GET request and check the response.

References

http://blog.cari.net/carisirt-yet-another-bmc-vulnerability-and-some-added-extras/

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Assesi 'bg' Parameter SQL Injection vulnerability
ASAS Server End User Self Service (EUSS) SQL Injection Vulnerability
Astium VoIP PBX SQL Injection Vulnerability
Apache Tomcat AJP Protocol Security Bypass Vulnerability
ATutor password reminder SQL injection

Take action and discover your vulnerabilities