[VIM] HP lingo or one hell of a hack?
security curmudgeon
jericho at attrition.org
Fri Aug 12 19:09:06 EDT 2005
Sorry to reply to own, should have quoted one more bit:
: VULNERABILITY SUMMARY:
: A potential vulnerability has been identified with the HP ProLiant
: DL585 server, where a remote unauthorized user may gain access to
: the server controls, when the server is powered down.
RESOLUTION:
Until a new version of the Integrated Lights-Out firmware (version 1.81)
for ProLiant DL585 servers is available, HP is providing the following
workaround:
To eliminate this vulnerability until ILO version 1.81 becomes available,
unplug the power cord whenever the server is powered down. This will
prohibit the remote access exploit.
---
More information about the VIM
mailing list