Lucene search

MitreCVE-2007-0661

HistoryFeb 01, 2007 - 10:28 p.m.

CVE-2007-0661

2007-02-0122:28:00

mitre

web.nvd.nist.gov

intel

enterprise

southbridge

bmc

server

boards

ipmi

vulnerability

cve-2007-0661

denial of service

CVSS2

5.4

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:M/Au:N/C:P/I:P/A:P

AI Score

Confidence

High

EPSS

0.007

Percentile

79.9%

JSON

Intel Enterprise Southbridge 2 Baseboard Management Controller (BMC), Intel Server Boards 5000XAL, S5000PAL, S5000PSL, S5000XVN, S5000VCL, S5000VSA, SC5400RA, and OEM Firmware for Intel Enterprise Southbridge Baseboard Management Controller before 20070119, when Intelligent Platform Management Interface (IPMI) is enabled, allow remote attackers to connect and issue arbitrary IPMI commands, possibly triggering a denial of service.

Affected configurations

Nvd

Node

intelenterprise_southbridge_2_bmc

intelenterprise_southbridge_bmcoem

intelserver_board_s5000pal

intelserver_board_s5000psl

intelserver_board_s5000vcl

intelserver_board_s5000vsa

intelserver_board_s5000xal

intelserver_board_s5000xvn

intelserver_board_sc5400ra

VendorProductVersionCPE
intelenterprise_southbridge_2_bmc*cpe:2.3:h:intel:enterprise_southbridge_2_bmc:*:*:*:*:*:*:*:*
intelenterprise_southbridge_bmc*cpe:2.3:h:intel:enterprise_southbridge_bmc:*:*:oem:*:*:*:*:*
intelserver_board_s5000pal*cpe:2.3:h:intel:server_board_s5000pal:*:*:*:*:*:*:*:*
intelserver_board_s5000psl*cpe:2.3:h:intel:server_board_s5000psl:*:*:*:*:*:*:*:*
intelserver_board_s5000vcl*cpe:2.3:h:intel:server_board_s5000vcl:*:*:*:*:*:*:*:*
intelserver_board_s5000vsa*cpe:2.3:h:intel:server_board_s5000vsa:*:*:*:*:*:*:*:*
intelserver_board_s5000xal*cpe:2.3:h:intel:server_board_s5000xal:*:*:*:*:*:*:*:*
intelserver_board_s5000xvn*cpe:2.3:h:intel:server_board_s5000xvn:*:*:*:*:*:*:*:*
intelserver_board_sc5400ra*cpe:2.3:h:intel:server_board_sc5400ra:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
intel	enterprise_southbridge_2_bmc	*	cpe:2.3:h:intel:enterprise_southbridge_2_bmc::::::::
intel	enterprise_southbridge_bmc	*	cpe:2.3:h:intel:enterprise_southbridge_bmc:::oem:::::*
intel	server_board_s5000pal	*	cpe:2.3:h:intel:server_board_s5000pal::::::::
intel	server_board_s5000psl	*	cpe:2.3:h:intel:server_board_s5000psl::::::::
intel	server_board_s5000vcl	*	cpe:2.3:h:intel:server_board_s5000vcl::::::::
intel	server_board_s5000vsa	*	cpe:2.3:h:intel:server_board_s5000vsa::::::::
intel	server_board_s5000xal	*	cpe:2.3:h:intel:server_board_s5000xal::::::::
intel	server_board_s5000xvn	*	cpe:2.3:h:intel:server_board_s5000xvn::::::::
intel	server_board_sc5400ra	*	cpe:2.3:h:intel:server_board_sc5400ra::::::::

References

lz1.intel.com/psirt/advisory.aspx?intelid=INTEL-SA-00012&languageid=en-fr

osvdb.org/33044

secunia.com/advisories/23989

www.securityfocus.com/bid/22341

www.vupen.com/english/advisories/2007/0432

CVSS2

5.4

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:M/Au:N/C:P/I:P/A:P

AI Score

Confidence

High

EPSS

0.007

Percentile

79.9%

JSON

Related for CVE-2007-0661