All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Flash : Serious Security Issue with Latest CPUs from Intel !
Charlie Demerjian (SemiAccurate journalist) reported on May 1, 2017 every Intel platform from Nehalem to Kaby Lake has a remotely exploitable security hole. SemiAccurate has been begging Intel to fix this issue for literally years and it looks like they finally listened.
The short version is that every Intel platform with AMT, ISM, and SBT from Nehalem in 2008 to Kaby Lake in 2017 has a remotely exploitable security hole in the ME (Management Engine) not CPU firmware.
If this isn’t scary enough news, even if your machine doesn’t have SMT, ISM, or SBT provisioned, it is still vulnerable, just not over the network. For the moment. From what SemiAccurate gathers, there is literally no Intel box made in the last 9+ years that isn’t at risk. This is somewhere between nightmarish and apocalyptic.
> The problem is quite simple, the ME controls the network ports and has DMA access to the system. It can arbitrarily read and write to any memory or storage on the system, can bypass disk encryption once it is unlocked (and possibly if it has not, SemiAccurate hasn’t been able to 100% verify this capability yet), read and write to the screen, and do all of this completely unlogged. Due to the network access abilities, it can also send whatever it finds out to wherever it wants, encrypted or not.
Reddit : https://www.reddit.com/r/linux/comments/68ma1a/every_intel_platform_with_amt_ism_and_sbt_from/
Source : https://semiaccurate.com/2017/05/01/remote-security-exploit-2008-intel-platforms/
Comments
doble-post...
https://www.lowendtalk.com/discussion/113040/remote-security-exploit-in-all-2008-intel-platforms
oops.. sorry
@jarland , plz merge / delete this.
I'm curious as to why this vulnerability isn't actually being used.
It will be used, when :
And at some point, maybe it's already used, but stay in secret, no need publication.
Its features maybe.