Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2002-2059

BIOS D845BG, D845HV, D845PT and D845WN on Intel motherboards does not properly restrict access to configuration information when BIOS passwords are enabled, which could allow local users to change the default boot device via the F8 key.

Published

2002-12-31T05:00:00.000

Last Modified

2025-04-03T01:03:51.193

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 4.6 (MEDIUM)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

3.9

Impact Score

6.4

Weaknesses

Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Hardware	intel	d845bg_motherboard	p01-0012	Yes
Hardware	intel	d845bg_motherboard	p02-0015	Yes
Hardware	intel	d845bg_motherboard	p03-0021	Yes
Hardware	intel	d845bg_motherboard	p04-0023	Yes
Hardware	intel	d845bg_motherboard	p05-0024	Yes
Hardware	intel	d845hv_motherboard	p04-0018	Yes
Hardware	intel	d845hv_motherboard	p05-0022	Yes
Hardware	intel	d845hv_motherboard	p06-0024	Yes
Hardware	intel	d845hv_motherboard	p07-0029	Yes
Hardware	intel	d845hv_motherboard	p08-0031	Yes
Hardware	intel	d845hv_motherboard	p09-0035	Yes
Hardware	intel	d845hv_motherboard	p10-0038	Yes
Hardware	intel	d845hv_motherboard	p11-0040	Yes
Hardware	intel	d845pt_motherboard	p01-0012	Yes
Hardware	intel	d845pt_motherboard	p02-0015	Yes
Hardware	intel	d845pt_motherboard	p03-0021	Yes
Hardware	intel	d845pt_motherboard	p04-0023	Yes
Hardware	intel	d845pt_motherboard	p05-0024	Yes
Hardware	intel	d845wn_motherboard	p04-0018	Yes
Hardware	intel	d845wn_motherboard	p06-0024	Yes
Hardware	intel	d845wn_motherboard	p07-0029	Yes
Hardware	intel	d845wn_motherboard	p08-0031	Yes
Hardware	intel	d845wn_motherboard	p09-0035	Yes
Hardware	intel	d845wn_motherboard	p10-0038	Yes
Hardware	intel	d845wn_motherboard	p11-0040	Yes

References

ftp://download.intel.com/design/motherbd/bg/P06-0027.pdf ([email protected])
ftp://download.intel.com/design/motherbd/hv/P12-0041d.pdf ([email protected])
ftp://download.intel.com/design/motherbd/pt/P06-0027.pdf ([email protected])
ftp://download.intel.com/design/motherbd/wn/P12-0041d.pdf ([email protected])
http://archives.neohapsis.com/archives/bugtraq/2002-04/0356.html Exploit ([email protected])
http://archives.neohapsis.com/archives/bugtraq/2002-05/0017.html Patch ([email protected])
http://www.iss.net/security_center/static/8998.php Patch ([email protected])
http://www.securityfocus.com/bid/4610 Patch ([email protected])
ftp://download.intel.com/design/motherbd/bg/P06-0027.pdf (af854a3a-2127-422b-91ae-364da2661108)
ftp://download.intel.com/design/motherbd/hv/P12-0041d.pdf (af854a3a-2127-422b-91ae-364da2661108)
ftp://download.intel.com/design/motherbd/pt/P06-0027.pdf (af854a3a-2127-422b-91ae-364da2661108)
ftp://download.intel.com/design/motherbd/wn/P12-0041d.pdf (af854a3a-2127-422b-91ae-364da2661108)
http://archives.neohapsis.com/archives/bugtraq/2002-04/0356.html Exploit (af854a3a-2127-422b-91ae-364da2661108)
http://archives.neohapsis.com/archives/bugtraq/2002-05/0017.html Patch (af854a3a-2127-422b-91ae-364da2661108)
http://www.iss.net/security_center/static/8998.php Patch (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/4610 Patch (af854a3a-2127-422b-91ae-364da2661108)