We've recently being undergoing some security scans within our environment. Across our DRACs/iDRACs a number of vulnerabilities have been identified which we cannot find resolutions for.
- (CVE-2011-3192) Apache HTTPD: Range header remote DoS
- OpenSSH X11 Cookie Local Authentication Bypass Vulnerability, and
- VNC remote control service installed
Has anyone else come across these, are they false positives?
Thanks,