Intel LAN Management Server Setup Utilities Configuration Vulnerability

BID:10068

Info

Intel LAN Management Server Setup Utilities Configuration Vulnerability

Bugtraq ID: 10068
Class: Design Error
CVE:
Remote: No
Local: Yes
Published: Apr 07 2004 12:00AM
Updated: Apr 07 2004 12:00AM
Credit: This issue was disclosed in the referenced Intel action alert.
Vulnerable: Intel System Setup Utility
Intel Server Platform SRSH4
Intel Server Platform SR870BN4
Intel Server Platform SR870BH2
Intel Server Platform SPSH4
Intel Server Control
Intel Server Configuration Wizard
Intel Server Board SHG2
Intel Server Board SE7501HG2
Intel Server Board SE7500WV2
Intel Server Board SDS2
Intel Server Board SCB2
Intel Entry Server Platform SR1325TP1-E
Intel Entry Server Board SE7210TP1-E
Intel Client System Setup Utility
Intel CLI Auto-configuration Utility
Intel Carrier Grade Server TSRMT2
Intel Carrier Grade Server TSRLT2
Intel Carrier Grade Server TIGPR2U
HP Carrier Grade Server cc3310 A9863A
HP Carrier Grade Server cc3310 A9862A
HP Carrier Grade Server cc3300 A6901A
HP Carrier Grade Server cc3300 A6900A
HP Carrier Grade Server cc2300 A6899A
HP Carrier Grade Server cc2300 A6898A
Not Vulnerable:

Discussion

Intel LAN Management Server Setup Utilities Configuration Vulnerability

It has been reported that the LAN management server setup utilities are prone to a remote configuration vulnerability. This issue is due to a design error that leaves the system insecure after remote management occurs.

This issue may allow an attacker to gain unauthorized access to certain utilities on the affected system.

Exploit / POC

Intel LAN Management Server Setup Utilities Configuration Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.

Solution / Fix

Intel LAN Management Server Setup Utilities Configuration Vulnerability

Solution:
Intel has released an action alert AA-679-1 and a fix dealing with this issue.

The HP advisory HPSBGN01009 is also available.


Intel System Setup Utility

Intel Server Platform SRSH4

Intel Client System Setup Utility

HP Carrier Grade Server cc3310 A9862A

Intel Server Platform SPSH4

Intel Server Board SE7501HG2

Intel Server Configuration Wizard

HP Carrier Grade Server cc3310 A9863A

Intel Entry Server Platform SR1325TP1-E

HP Carrier Grade Server cc2300 A6899A

Intel Carrier Grade Server TIGPR2U

Intel Server Board SDS2

Intel Entry Server Board SE7210TP1-E

Intel Carrier Grade Server TSRLT2

Intel Server Board SE7500WV2

HP Carrier Grade Server cc2300 A6898A

Intel Server Control

Intel Server Platform SR870BH2

Intel Server Platform SR870BN4

Intel Server Board SCB2

HP Carrier Grade Server cc3300 A6901A

HP Carrier Grade Server cc3300 A6900A

Intel Server Board SHG2

Intel Carrier Grade Server TSRMT2

Intel CLI Auto-configuration Utility

References

Intel LAN Management Server Setup Utilities Configuration Vulnerability

References:
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report