ProHoster > Π‘Π»ΠΎΠ³ > xov xwm hauv internet > Cov chaw taws teeb tsis zoo hauv Intel server boards nrog BMC Emulex Pilot 3

Cov chaw taws teeb tsis zoo hauv Intel server boards nrog BMC Emulex Pilot 3

Intel qhia ntawm kev tshem tawm 22 qhov tsis zoo hauv lub firmware ntawm nws cov servers motherboards, server systems thiab suav modules. Peb qhov tsis zoo, ib qho yog muab rau theem tseem ceeb, (CVE-2020-8708 - TSI 9.6, CVE-2020-8707 - TSI 8.3, CVE-2020-8706 - TSI 4.7) tshwm hauv firmware ntawm Emulex Pilot 3 BMC maub los siv hauv Intel cov khoom. Qhov tsis muaj peev xwm tso cai rau tsis muaj kev lees paub nkag mus rau cov chaw taws teeb tswj chaw taws teeb (KVM), hla kev lees paub thaum ua raws li USB cia khoom, thiab ua rau cov chaw taws teeb tsis txaus hauv Linux ntsiav siv hauv BMC.

CVE-2020-8708 qhov tsis muaj peev xwm tso cai rau tus neeg tawm tsam tsis muaj kev lees paub nrog kev nkag mus rau ib qho chaw hauv zos nrog rau cov neeg rau zaub mov tsis zoo kom nkag mus rau BMC tswj ib puag ncig. Nws tau raug sau tseg tias cov txheej txheem rau kev siv qhov tsis zoo yog qhov yooj yim heev thiab txhim khu kev qha, vim qhov teeb meem tshwm sim los ntawm kev ua vaj tse yuam kev. Ntxiv mus, raws li raws li Tom qab tus kws tshawb fawb tau txheeb xyuas qhov muaj qhov tsis zoo, ua haujlwm nrog BMC los ntawm kev siv tau yooj yim dua li siv tus qauv Java tus neeg siv khoom. Ntawm cov khoom siv cuam tshuam los ntawm qhov teeb meem yog cov tsev neeg ntawm Intel R1000WT, R2000WT, R1000SP, LSVRP, LR1304SP, R1000WF thiab R2000WF server systems, S2600WT, S2600CW, S2600KP, S2600TP, S1200KP, S2600TP, 2600 motherboards. 2600BP, as well as suav modules HNS2600KP, HNS2600TP thiab HNS2600BP. Qhov tsis zoo tau raug kho hauv firmware hloov tshiab 1.59.

Raws li tsis raug cai muab Lub firmware rau BMC Emulex Pilot 3 tau sau los ntawm AMI, yog li tsis suav nrog manifestation ntawm vulnerabilities ntawm systems los ntawm lwm manufacturers. Cov teeb meem muaj nyob rau hauv thaj ua rau thaj rau sab nraud rau Linux ntsiav thiab cov txheej txheem tswj cov neeg siv-chaw, cov cai uas yog tus cwj pwm los ntawm tus kws tshawb fawb uas tau txheeb xyuas qhov teeb meem raws li txoj cai phem tshaj plaws uas nws tau ntsib.

Cia peb nco qab tias BMC yog tus tswj hwm tshwj xeeb tau teeb tsa hauv cov servers, uas muaj nws tus kheej CPU, nco, cia thiab sensor kev sib tham sib cuam tshuam, uas muab cov theem qis rau kev saib xyuas thiab tswj cov khoom siv server. Siv BMC, tsis hais lub operating system khiav ntawm tus neeg rau zaub mov, koj tuaj yeem saib xyuas cov xwm txheej ntawm cov sensors, tswj lub zog, firmware thiab disks, teeb tsa cov chaw taws teeb booting hauv lub network, xyuas kom muaj kev ua haujlwm ntawm cov chaw taws teeb nkag, thiab lwm yam.

Tau qhov twg los: opennet.ru

Ntxiv ib saib