A world-wide scan of the Intelligent Platform Management Interface (IPMI) protocol
identified over 230,000 Baseboard Management Controllers (BMCs) exposed to the
internet, of which upwards of 90% could be compromised by just a handful of basic
configuration and protocol weaknesses. The real exposure is even greater, as access to a
BMC allows an attacker to compromise its host server as well as other BMCs within its
management group, since they share common passwords.
read more..........http://fish2.com/ipmi/river.pdf
identified over 230,000 Baseboard Management Controllers (BMCs) exposed to the
internet, of which upwards of 90% could be compromised by just a handful of basic
configuration and protocol weaknesses. The real exposure is even greater, as access to a
BMC allows an attacker to compromise its host server as well as other BMCs within its
management group, since they share common passwords.
read more..........http://fish2.com/ipmi/river.pdf