Kemp Support, how can we help?

The latest application delivery knowledge and expertise at your fingertips.

  1. Kemp Support
  2. Knowledge Base
  3. Security

How to mitigate against CVE-2013-4786 and CVE-2013-4037

Updated

 

Information

 

Summary:

This article will cover how to mitigate CVEs CVE-2013-4786 and CVE-2013-4037
Environment:

Product: LoadMaster

Version: Any

Platform: Hardware

Application: Any
Question/Problem Description:

IPMI 2.0 RAKP Authentication Remote Password Hash Retrieval Vulnerability
IPMI 2.0 Password Hash Retrieval Vulnerability Detected For USER: admin on port 623 over UDP.
Vers:7.2.54.3.21224

Please show to address these vulnerabilities. If false positive please provide document/KB stating this.
How can we disable IPMI service?
Steps to Reproduce:  
Error Message:  
Defect Number:  
Enhancement Number:  
Cause: This is something that would affect any hardware with an AMI BIOS/BMC.
Resolution: N/A
Workaround:

To get around this, the BMC can be disabled within the BIOS. The below image shows what the BIOS should look like after the BMC has been disabled.

Alternatively, a dedicated management network to access the BMC, which only trusted users have access to.
Notes:  
Was this article helpful?
0 out of 0 found this helpful

Comments

In this document