BMC flaw left unchecked for 6 years hits Intel and Lenovo servers

0
7

A lack of communication which occured several years ago resulted in thousands of devices being vulnerable to a remotely exploitable heap out-of-bounds (OOB) read vulnerability today – and among the vulnerable devices are Intel and Lenovo servers.

Six years ago, the maintainers of Lighttpd discovered the above-mentioned flaw, which could allow threat actors to exfiltrate process memory addresses. That, in turn, could have been used to work around protection mechanisms. 

LEAVE A REPLY

Please enter your comment!
Please enter your name here