CVE-2013-4037

Currently unrated

Key Information:

Vendor: IBM
Status: System X3500 M3; Flex System X440 Compute Node; System X3250 M4; System X3550 M3
Vendor: CVE Published:; 9 August 2013

Summary

The RAKP protocol support in the Intelligent Platform Management Interface (IPMI) implementation in Integrated Management Module (IMM) and Integrated Management Module II (IMM2) on IBM BladeCenter, Flex System, System x iDataPlex, and System x3### servers sends a password hash to the client, which makes it easier for remote attackers to obtain access via a brute-force attack.

References

http://www.ibm.com/support/entry/portal/docdisplay?lndoci...

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/86173

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Aug 9, 2013
Vulnerability Reserved
Jun 7, 2013