Technical Advisory 1015
Copyright © 2012 Intel Corporation. * Other names and brands may be claimed as the property of others.
Intel® Server board S1200BTL
Intel® Server system
R1304BTLSHBN/R1304BTLSFAN/P4304BTLSHCN/P4304BTL
SFCN
1.14.3503
Intel® Server board S5520UR/URT
Intel® Server System SR1600UR/URHS
Intel® Server System SR1625UR/URSAS
Intel® Server System SR2600URBRP/URLX/URSATA
Intel® Server System SR2625URBRP/URLX/URLXT
BMC00.60
Intel® Server board S5500WB
Intel® Server System SR1690WB
Intel® Server System SR1695WB
BMC00.60
Intel® Server board S5500BC
Intel® Server System SR1630BC
Intel® Server System SC5650BCDP
BMC00.60
Intel® Server board S5520HC/HCT
Intel® Server board S5500HCV
Intel® Server System SC5650HCBRP
BMC00.60
Intel® Workstation board S5520SC
Intel® Workstation system SC5650SCWS
BMC00.60
Description
Intel takes product security very seriously and is continually working on enhancing the security of its products. Recently a
potential security vulnerability was found that affects the Baseboard Management Controller (BMC) software for server
boards listed above. While no known exploits of this vulnerability have been reported, Intel has developed a mitigation for
this potential issue for our products. A full description of this vulnerability can be found in the document titled “Security
Advisory EPSD BMC” at http://security-center.intel.com/.
Root Cause
A potential security vulnerability was found related to the improper generation of RSA encryption keys for Intel BMC
(Baseboard Management Controller) firmware.
Corrective Action / Resolution
Intel has released an updated BMC firmware that provides mitigation for this potential vulnerability. The version of the
BMC firmware update release for specific server boards is listed in the table above. Intel recommends that customers
update the BMC firmware as soon as possible.
Intel will also implement the updated BMC firmware into the factory for currently shipping products and for products
releasing in the future.
Recommended Customer Action
Intel recommends that customers update the BMC firmware of their Intel Server Boards to the version listed in the table
above, or to a later version. The latest BMC firmware version for your specific product can be found at
http://downloadcenter.intel.com. Alternatively, in the case you are not able to update the older BMC firmware version;
BMC Internet access should be disabled. BMC network access which is used to do out-of-band server management is
disabled by default.
Enterprise Platforms & Services Division
Intel Corporation