Current Dell OMCI - any hidden dangers?

["Ullman, Catherine" <cende () BUFFALO EDU>]

Greetings!

We've been asked to find out if any institutions out there are using the
current Dell OMCI and if so, whether they are aware of any hidden dangers
involved in doing so.  The older versions of Dell management tools used MSDE
and, as a result, were susceptible to many security risks.  The new version
is a driver that allows existing WMI applications to directly access Dell
hardware (bios, etc), but does not appear to open new ports.  The department
that wishes to use this feature wants to be able to program the AutoOn
setting of the bios to use to boot machines for patching before users arrive
for the day.  

Any insight would be appreciated.  Thanks!

Best,
Cathy


Catherine J. Ullman
Information Security Analyst
Information Security Office
University at Buffalo
cende () buffalo edu

Attachment: smime.p7s
Description: