How to mitigate against CVE-2013-4786 and CVE-2013-4037
This article will cover how to mitigate CVEs CVE-2013-4786 and CVE-2013-4037
IPMI 2.0 RAKP Authentication Remote Password Hash Retrieval Vulnerability
How to address these vulnerabilities.
|Steps to Reproduce:
|This is something that would affect any hardware with an AMI BIOS/BMC.
It is highly recommended to block port 623/UDP on the firewall, the default port for IPMI access.
The BMC user can be also disabled within the BIOS. Depending on the model of the LoadMaster/ECM device, the BIOS screen may appear differently. For further assistance please contact LoadMaster Support.
You can also ensure no IP is set on the BMC Network Configuration.
In the Configuration Address section, make sure this is set to something other than a DHCP setting. We recommend doing the following:
However, if the above is not done, and if this BMC network is set to use DHCP and gets an IP assigned, the device would become vulnerable.