exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

Oracle Exadata Infiniband Switch Default Logins / Poor Configuration

Oracle Exadata Infiniband Switch Default Logins / Poor Configuration
Posted Mar 15, 2012
Authored by Larry W. Cashdollar

Oracle Exadata Infiniband Switch suffers from default logins and a world readable shadow file.

tags | exploit
SHA-256 | 7e5478fdcf18712f433486ced03cd8f6db6de63a872fcfdbfc813aea0e823206

Oracle Exadata Infiniband Switch Default Logins / Poor Configuration

Change Mirror Download
Oracle Exadata Infiniband Switch default logins and world readable shadow file

Hi Full-Disclosure List,

I've noticed a minor issue with the 1/4 rack Oracle Exadata Solution.

What is Exadata?

From Oracle.com "Oracle Exadata is the only database machine that provides extreme performance for both data warehousing and OLTP
applications, making it the ideal platform for consolidating on private clouds. It is a complete package of servers, storage, networking,
and software that is massively scalable, secure, and redundant. With Oracle Exadata customers can reduce IT costs through consolidation,
store up to ten times more data, improve performance of all applications, deliver a faster time-to-market by eliminating systems integration
trial and error, and make better business decisions in real time."

http://www.oracle.com/us/products/database/exadata/overview/index.html

The oracle engineered solution contains two leaf switches and in larger installations a spine switch. The installation I worked with didn't
have a spine switch, but the two leaf switches were configured with three logins with easily guessable passwords and a shadow file
that was world readable.

There are three accounts with easily guessable default passwords on the
exadata inifiniband switches:

ilom-admin, ilom-operator and nm2user.

rux0r:~ meep0$ ssh ilom-admin@192.168.0.113 "cat /conf/shadow"

The shadow file is world readable:

[root@exad-1swib2 ~]# ls -l /conf/shadow
-rw-r--r-- 1 root root 749 Dec 23 2011 /conf/shado


Vendor: notified 3/12/2012

Fix:

Rotate default passwords. I am checking on if you can lock down file permissions on /conf/shadow with out causing issues.

-- Larry Cashdollar
http://vapid.dhs.org
Login or Register to add favorites

File Archive:

July 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    27 Files
  • 2
    Jul 2nd
    10 Files
  • 3
    Jul 3rd
    35 Files
  • 4
    Jul 4th
    27 Files
  • 5
    Jul 5th
    18 Files
  • 6
    Jul 6th
    0 Files
  • 7
    Jul 7th
    0 Files
  • 8
    Jul 8th
    28 Files
  • 9
    Jul 9th
    44 Files
  • 10
    Jul 10th
    24 Files
  • 11
    Jul 11th
    25 Files
  • 12
    Jul 12th
    11 Files
  • 13
    Jul 13th
    0 Files
  • 14
    Jul 14th
    0 Files
  • 15
    Jul 15th
    28 Files
  • 16
    Jul 16th
    6 Files
  • 17
    Jul 17th
    34 Files
  • 18
    Jul 18th
    6 Files
  • 19
    Jul 19th
    34 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    19 Files
  • 23
    Jul 23rd
    17 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close