CVE-2004-2600
Summary
| CVE | CVE-2004-2600 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2004-12-31 05:00:00 UTC |
| Updated | 2017-07-11 01:32:00 UTC |
| Description | The firmware for Intelligent Platform Management Interface (IPMI) 1.5-based Intel Server Boards and Platforms is shipped with an Authentication Type Enables parameter set to an invalid None parameter, which allows remote attackers to obtain sensitive information when LAN management functionality is enabled. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Hp | Carrier Grade Server Cc2300 | a6898a | All | All | All |
| Hardware | Hp | Carrier Grade Server Cc2300 | a6899a | All | All | All |
| Hardware | Hp | Carrier Grade Server Cc2300 | a6898a | All | All | All |
| Hardware | Hp | Carrier Grade Server Cc2300 | a6899a | All | All | All |
| Hardware | Hp | Carrier Grade Server Cc3300 | a6900a | All | All | All |
| Hardware | Hp | Carrier Grade Server Cc3300 | a6901a | All | All | All |
| Hardware | Hp | Carrier Grade Server Cc3300 | a6900a | All | All | All |
| Hardware | Hp | Carrier Grade Server Cc3300 | a6901a | All | All | All |
| Hardware | Hp | Carrier Grade Server Cc3310 | a9862a | All | All | All |
| Hardware | Hp | Carrier Grade Server Cc3310 | a9863a | All | All | All |
| Hardware | Hp | Carrier Grade Server Cc3310 | a9862a | All | All | All |
| Hardware | Hp | Carrier Grade Server Cc3310 | a9863a | All | All | All |
| Hardware | Intel | Carrier Grade Server Tigpr2u | All | All | All | All |
| Hardware | Intel | Carrier Grade Server Tigpr2u | All | All | All | All |
| Hardware | Intel | Carrier Grade Server Tsrlt2 | All | All | All | All |
| Hardware | Intel | Carrier Grade Server Tsrlt2 | All | All | All | All |
| Hardware | Intel | Carrier Grade Server Tsrmt2 | All | All | All | All |
| Hardware | Intel | Carrier Grade Server Tsrmt2 | All | All | All | All |
| Application | Intel | Client System Setup Utility | All | All | All | All |
| Application | Intel | Client System Setup Utility | All | All | All | All |
| Application | Intel | Cli Auto-configuration Utility | All | All | All | All |
| Application | Intel | Cli Auto-configuration Utility | All | All | All | All |
| Hardware | Intel | Entry Server Board Se7210tp1-e | All | All | All | All |
| Hardware | Intel | Entry Server Board Se7210tp1-e | All | All | All | All |
| Hardware | Intel | Entry Server Platform Sr1325tp1-e | All | All | All | All |
| Hardware | Intel | Entry Server Platform Sr1325tp1-e | All | All | All | All |
| Hardware | Intel | Server Board Scb2 | All | All | All | All |
| Hardware | Intel | Server Board Scb2 | All | All | All | All |
| Hardware | Intel | Server Board Sds2 | All | All | All | All |
| Hardware | Intel | Server Board Sds2 | All | All | All | All |
| Hardware | Intel | Server Board Se7500wv2 | All | All | All | All |
| Hardware | Intel | Server Board Se7500wv2 | All | All | All | All |
| Hardware | Intel | Server Board Se7501hg2 | All | All | All | All |
| Hardware | Intel | Server Board Se7501hg2 | All | All | All | All |
| Hardware | Intel | Server Board Shg2 | All | All | All | All |
| Hardware | Intel | Server Board Shg2 | All | All | All | All |
| Application | Intel | Server Configuration Wizard | All | All | All | All |
| Application | Intel | Server Configuration Wizard | All | All | All | All |
| Application | Intel | Server Control | All | All | All | All |
| Application | Intel | Server Control | All | All | All | All |
| Hardware | Intel | Server Platform Spsh4 | All | All | All | All |
| Hardware | Intel | Server Platform Spsh4 | All | All | All | All |
| Hardware | Intel | Server Platform Sr870bh2 | All | All | All | All |
| Hardware | Intel | Server Platform Sr870bh2 | All | All | All | All |
| Hardware | Intel | Server Platform Sr870bn4 | All | All | All | All |
| Hardware | Intel | Server Platform Sr870bn4 | All | All | All | All |
| Hardware | Intel | Server Platform Srsh4 | All | All | All | All |
| Hardware | Intel | Server Platform Srsh4 | All | All | All | All |
| Application | Intel | System Setup Utility | All | All | All | All |
| Application | Intel | System Setup Utility | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| download.intel.com/support/motherboards/server/sb/aa6791invalidlanconfiguration0... | CONFIRM | download.intel.com | Vendor Advisory |
| Secunia - Advisories - Intel Server Control and Server Management Insecure Firmware Setting | SECUNIA | secunia.com | Patch, Vendor Advisory |
| Intel LAN Management Server Setup Utilities Configuration Vulnerability | BID | www.securityfocus.com | |
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | |
| 4978 | OSVDB | www.osvdb.org | |
| Intel Support | MISC | support.intel.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.