{"id":2747,"date":"2017-05-02T11:55:11","date_gmt":"2017-05-02T09:55:11","guid":{"rendered":"http:\/\/borncity.com\/win\/?p=2747"},"modified":"2017-05-02T11:55:41","modified_gmt":"2017-05-02T09:55:41","slug":"remote-security-exploit-in-intel-platforms","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2017\/05\/02\/remote-security-exploit-in-intel-platforms\/","title":{"rendered":"Remote security exploit in Intel Platforms"},"content":{"rendered":"

[German<\/a>]Intel platforms from Nehalem to Kaby Lake has a critical vulnerability. Attackers can remotely access an exploitable elevation of privilege security hole. While no consumer systems are affected, Intel and it's OEMs ships a firmware update. <\/p>\n

<\/p>\n

The critical remote security exploit affects the firmware of Intel\u00ae Active Management Technology (AMT), Intel\u00ae Standard Manageability (ISM), and Intel\u00ae Small Business Technology. The site semiaccurate.com<\/a> has discovered this bug and informed Intel about that. They are also requesting a fix. On May 1, 2017,  Intel has published the advisory INTEL-SA-00075<\/a>, addressing this security issue:<\/p>\n

\n

Intel Active Management Technology, Intel Small Business Technology, and Intel Standard Manageability Escalation of Privilege <\/p>\n

Intel ID: INTEL-SA-00075 <\/p>\n

Product family: Intel\u00ae Active Management Technology, Intel\u00ae Small Business Technology, and Intel\u00ae Standard Manageability <\/p>\n

Impact of vulnerability: Elevation of Privilege
Severity rating: Critical <\/p>\n

Original release: May 01, 2017
Last revised: May 01, 2017<\/p>\n<\/blockquote>\n

Intel says, all firmware versions 6.x, 7.x, 8.x, 9.x, 10.x, 11.0, 11.5, and 11.6 of Intel\u00ae Active Management Technology (AMT), Intel\u00ae Standard Manageability (ISM), and Intel\u00ae Small Business Technology Firmware are affected. An attacker with normal privileges can gain control of the manageability features provided by these products. Intel describes two ways for attacks:<\/p>\n