Source |
CSO |
Identifiant |
8288308 |
Date de publication |
2022-12-06 08:28:00 (vue: 2022-12-06 17:06:03) |
Titre |
Flaws in MegaRAC baseband management firmware impact many server brands |
Texte |
Researchers have found three vulnerabilities in AMI MegaRAC, a baseband management controller (BMC) firmware used by multiple server manufacturers. If exploited, the flaws could allow attackers to remotely control servers, deploy malware and firmware implants, or trigger damaging actions that leave them inoperable.BMCs are microcontrollers present on server motherboards that have their own firmware, dedicated memory, power, and network ports and are used for out-of-band management of servers when their main operating systems are shut down. They are essentially small independent computers running inside bigger computers that allow administrators to remotely perform a variety of maintenance and diagnostic tasks including reinstalling operating systems, restarting servers when they're unresponsive, deploying firmware updates and more.To read this article in full, please click here |
Envoyé |
Oui |
Condensat |
actions administrators allow ami are article attackers band baseband bigger bmc bmcs brands click computers control controller could damaging dedicated deploy deploying diagnostic down essentially exploited firmware flaws found full have here impact implants including independent inoperable inside leave main maintenance malware management manufacturers many megarac memory microcontrollers more motherboards multiple network operating out own perform please ports power present read reinstalling remotely researchers restarting running server servers shut small systems tasks them they three trigger unresponsive updates used variety vulnerabilities when |
Tags |
Malware
|
Stories |
|
Notes |
★★★
|
Move |
|