Intel security review of ME reveals vulnerabilities

For discussions about security.
Post Reply
Message
Author
User avatar
souleau
Posts: 148
Joined: Sun 23 Oct 2016, 15:24

Intel security review of ME reveals vulnerabilities

#1 Post by souleau »

From the publication:
Based on the items identified through the comprehensive security review, an attacker could gain unauthorized access to platform, Intel® ME feature, and 3rd party secrets protected by the Intel® Management Engine (ME), Intel® Server Platform Service (SPS), or Intel® Trusted Execution Engine (TXE).
https://security-center.intel.com/advis ... geid=en-fr

User avatar
souleau
Posts: 148
Joined: Sun 23 Oct 2016, 15:24

#2 Post by souleau »

The term "third party secrets" in the quote above has a bit of a discomforting ring to it, wouldn't you agree?!

Anyway, here's a link to a command line detection tool for Linux, with which you can check if your particular system has the security vulnerability.

https://downloadcenter.intel.com/download/27150

User avatar
8Geee
Posts: 2181
Joined: Mon 12 May 2008, 11:29
Location: N.E. USA

#3 Post by 8Geee »

yep, i agree rather shifty stuff going on.
We just can't keep a secret from the gov't can we :P
ooooh, very secure md5sum included :twisted:

regards
8Geee
Linux user #498913 "Some people need to reimagine their thinking."
"Zuckerberg: a large city inhabited by mentally challenged people."

Post Reply