[afnog] Do you run an HP server, with an iLO4?
Daniel Shaw
daniel at afrinic.net
Tue Jun 19 16:49:02 UTC 2018
https://twitter.com/marcan42/status/1008981518159511553
@marcan42
HP iLO4 authentication bypass: curl -H "Connection: AAAAAAAAAAAAAAAAAAAAAAAAAAAAA"
No, that's not a crash PoC. That's a full blown auth bypass. sscanf into fixed buffer overwrites a flag field that bypasses auth. Yes, really.
https://airbus-seclab.github.io/ilo/SSTIC2018-Slides-EN-Backdooring_your_server_through_its_BMC_the_HPE_iLO4_case-perigaud-gazet-czarny.pdf …
More information about the afnog
mailing list