3 matches found
Security Bulletin: Risks of Using the Intelligent Platform Management Interface (IPMI) on the Integrated Management Module (IMM) and Integrated Management Module II (IMM2) (CVE-2013-4038, CVE-2013-4037, CVE-2013-4031)
Summary Various risks with the Intelligent Platform Management Interface IPMI have been identified and documented in the IT security community. Because the IMM and IMM2 provide IPMI access by default, a subset of these identified risks are applicable to IBM servers that include the IMM and IMM2...
Inherent Risks of Using the Intelligent Platform Management Interface (IPMI) on the Lenovo System x Integrated Management Module (IMM), Integrated Management Module II (IMM2) and ThinkServer TSM - Lenovo Support US
No description provided...
CVE-2013-4037
The CVE-2013-4037 issue concerns the RAKP-based authentication in IPMI on IBM/Lenovo IMM and IMM2 (various BladeCenter, Flex System, System x IMM/IMM2 platforms). The RAKP flow transmits a password hash to the client, enabling offline brute‑force/dictionary attacks to recover credentials. IBM’s a...