Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Apr 16, 2026

CVE-2004-2600

Description

The firmware for Intelligent Platform Management Interface (IPMI) 1.5-based Intel Server Boards and Platforms is shipped with an Authentication Type Enables parameter set to an invalid None parameter, which allows remote attackers to obtain sensitive information when LAN management functionality is enabled.

Affected products

Intel/Cli Auto Configuration Utility
cpe:2.3:a:intel:cli_auto-configuration_utility:*:*:*:*:*:*:*:*
Intel/Client System Setup Utility
cpe:2.3:a:intel:client_system_setup_utility:*:*:*:*:*:*:*:*
Intel/Server Configuration Wizard
cpe:2.3:a:intel:server_configuration_wizard:*:*:*:*:*:*:*:*
Intel/Server Control
cpe:2.3:a:intel:server_control:*:*:*:*:*:*:*:*
Intel/System Setup Utility
cpe:2.3:a:intel:system_setup_utility:*:*:*:*:*:*:*:*
Microfocus/Carrier Grade Server Cc23002 versions
cpe:2.3:h:hp:carrier_grade_server_cc2300:a6898a:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:h:hp:carrier_grade_server_cc2300:a6898a:*:*:*:*:*:*:*
- cpe:2.3:h:hp:carrier_grade_server_cc2300:a6899a:*:*:*:*:*:*:*
Microfocus/Carrier Grade Server Cc33002 versions
cpe:2.3:h:hp:carrier_grade_server_cc3300:a6900a:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:h:hp:carrier_grade_server_cc3300:a6900a:*:*:*:*:*:*:*
- cpe:2.3:h:hp:carrier_grade_server_cc3300:a6901a:*:*:*:*:*:*:*
Microfocus/Carrier Grade Server Cc33102 versions
cpe:2.3:h:hp:carrier_grade_server_cc3310:a9862a:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:h:hp:carrier_grade_server_cc3310:a9862a:*:*:*:*:*:*:*
- cpe:2.3:h:hp:carrier_grade_server_cc3310:a9863a:*:*:*:*:*:*:*
Intel/Carrier Grade Server Tigpr2u
cpe:2.3:h:intel:carrier_grade_server_tigpr2u:*:*:*:*:*:*:*:*
Intel/Carrier Grade Server Tsrlt2
cpe:2.3:h:intel:carrier_grade_server_tsrlt2:*:*:*:*:*:*:*:*
Intel/Carrier Grade Server Tsrmt2
cpe:2.3:h:intel:carrier_grade_server_tsrmt2:*:*:*:*:*:*:*:*
Intel/Entry Server Board Se7210tp1 E
cpe:2.3:h:intel:entry_server_board_se7210tp1-e:*:*:*:*:*:*:*:*
Intel/Entry Server Platform Sr1325tp1 E
cpe:2.3:h:intel:entry_server_platform_sr1325tp1-e:*:*:*:*:*:*:*:*
Intel/Server Board Scb2
cpe:2.3:h:intel:server_board_scb2:*:*:*:*:*:*:*:*
Intel/Server Board Sds2
cpe:2.3:h:intel:server_board_sds2:*:*:*:*:*:*:*:*
Intel/Server Board Se7500wv2
cpe:2.3:h:intel:server_board_se7500wv2:*:*:*:*:*:*:*:*
Intel/Server Board Se7501hg2
cpe:2.3:h:intel:server_board_se7501hg2:*:*:*:*:*:*:*:*
Intel/Server Board Shg2
cpe:2.3:h:intel:server_board_shg2:*:*:*:*:*:*:*:*
Intel/Server Platform Spsh4
cpe:2.3:h:intel:server_platform_spsh4:*:*:*:*:*:*:*:*
Intel/Server Platform Sr870bh2
cpe:2.3:h:intel:server_platform_sr870bh2:*:*:*:*:*:*:*:*
Intel/Server Platform Sr870bn4
cpe:2.3:h:intel:server_platform_sr870bn4:*:*:*:*:*:*:*:*
Intel/Server Platform Srsh4
cpe:2.3:h:intel:server_platform_srsh4:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/11315nvdPatchVendor Advisory
download.intel.com/support/motherboards/server/sb/aa6791invalidlanconfiguration040504.pdfnvdVendor Advisory
support.intel.com/support/motherboards/server/sb/CS-010422.htmnvd
www.osvdb.org/4978nvd
www.securityfocus.com/bid/10068nvd
exchange.xforce.ibmcloud.com/vulnerabilities/15775nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000