Unmonitored and unpatched BMC (remote administration hardware feature for
servers) are an almost certain source of chaos. They have the potential to
completely undermined the security of complex network infrastructures and data
centers.
Our on-going effort to analyze HPE iLO systems (4 and 5) resulted in the
discovery of many vulnerabilities, the last one having the capacity to fully
compromise the iLO chip from the host system itself.
This talk will show how a combination of these vulnerabilities can turn an
iLO BMC into a revolving door between an administration network and the
production network.