Serious security flaws in Intel’s ME, including those running Intel’s latest chips

Intel ID: INTEL-SA-00086
Product family: Various
Impact of vulnerability: Elevation of Privilege
Severity rating: Important
Original release: Nov 20, 2017
Last revised: Nov 22, 2017

There are multiple security vulnerabilities in its Management Engine (ME), a remote administration feature that allows IT administrators to manage devices and perform wide-ranging functions.

The security advisory points out bugs in ME, in addition to the Sever Platform Services (SPS) remote server management tool and the Trusted Execution Engine (TXE) hardware authentication tool.

What’s more, because ME has its own microprocessor, it can run even when a PC is off (but plugged in), as the microprocessor can function as a separate computer. This could then allow attackers to gain greater degrees of control by using ME as a launchpad.

Furthermore, the exploit could let an attack operate separately from the main computer, so they wouldn’t trigger any alarms.

Intel has released a detection tool for Linux and Windows to help customers check if their systems are vulnerable.

 

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s


%d bloggers like this: