Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.8
CVSSv2

CVE-2013-4786

Published: 08/07/2013 Updated: 29/10/2020
CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 785
Vector: AV:N/AC:L/Au:N/C:C/I:N/A:N
Subscribe to Oracle

Vulnerability Summary

The IPMI 2.0 specification supports RMCP+ Authenticated Key-Exchange Protocol (RAKP) authentication, which allows remote malicious users to obtain password hashes and conduct offline password guessing attacks by obtaining the HMAC from a RAKP message 2 response from a BMC.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

oracle fujitsu m10 firmware

intel intelligent platform management interface 2.0

Vendor Advisories

Red Hat: CVE-2013-4786
The IPMI 20 specification supports RMCP+ Authenticated Key-Exchange Protocol (RAKP) authentication, which allows remote attackers to obtain password hashes and conduct offline password guessing attacks by obtaining the HMAC from a RAKP message 2 response from a BMC ...

Exploits

Exploit DB: Intelligent Platform Management Interface - Information Disclosure
source: wwwsecurityfocuscom/bid/61076/info Intelligent Platform Management Interface is prone to an information-disclosure vulnerability Attackers can exploit this issue to obtain sensitive information that may aid password guessing attacks Intelligent Platform Management Interface 20 is vulnerable; other versions may also be affecte ...

Github Repositories

https://github.com/fin3ss3g0d/CosmicRakp

CVE-2013-4786 Go exploitation tool

CosmicRakp Table of Contents Introduction CVE-2013-4786 Installation Usage Credits License Introduction CosmicRakp is a powerful tool written in Go that allows red teamers and penetration testers to dump IPMI hashes This project aims to be efficient, fast, and easy to use CVE-2013-4786 This tool exploits the vulnerability detailed in CVE-2013-4786, which allows unauthorize

References

CWE-255http://fish2.com/ipmi/remote-pw-cracking.htmlhttps://community.rapid7.com/community/metasploit/blog/2013/07/02/a-penetration-testers-guide-to-ipmihttp://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.htmlhttp://marc.info/?l=bugtraq&m=139653661621384&w=2https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c04197764https://security.netapp.com/advisory/ntap-20190919-0005/https://nvidia.custhelp.com/app/answers/detail/a_id/5010https://nvd.nist.govhttps://github.com/fin3ss3g0d/CosmicRakphttps://www.exploit-db.com/exploits/38633/https://access.redhat.com/security/cve/cve-2013-4786
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675CVE-2024-3400CVE-2024-23557mass assignmentCVE-2023-1389local file inclusionCVE-2024-32596file uploadCVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook