Intel just confirmed: "Every Intel platform has a remotely exploitable security hole"

Portal Home > Knowledgebase > Articles Database > Intel just confirmed: "Every Intel platform has a remotely exploitable security hole"

Posted by alnitech, 05-02-2017, 12:24 PM
Charlie Demerjian (SemiAccurate journalist) reported on May 1, 2017 every Intel platform from Nehalem to Kaby Lake has a remotely exploitable security hole. SemiAccurate has been begging Intel to fix this issue for literally years and it looks like they finally listened. The short version is that every Intel platform with AMT, ISM, and SBT from Nehalem in 2008 to Kaby Lake in 2017 has a remotely exploitable security hole in the ME (Management Engine) not CPU firmware. If this isnt scary enough news, even if your machine doesnt have SMT, ISM, or SBT provisioned, it is still vulnerable, just not over the network. For the moment. From what SemiAccurate gathers, there is literally no Intel box made in the last 9+ years that isnt at risk. This is somewhere between nightmarish and apocalyptic. Continue reading here
Posted by aritrim, 05-02-2017, 12:30 PM
Yes this had to be coming. I know a few geeks who use only pre 2008 laptops. Those older IBM thinkpads specially. But no idea on server hardware what are the risks.
Posted by SenseiSteve, 05-02-2017, 12:40 PM
Just finished reading the entire article. Sounds pretty ominous. Thanks for the heads up, alnitech.
Posted by Nationhost-Chris, 05-02-2017, 02:42 PM
''Depending on whether you are a glass half empty or half full type, there is a bit of good news. This flaw is remotely exploitable only if you have AMT turned on, that is the ‘good’ news. The bad news is that if you don’t have it turned on or provisioned the vulnerability is still exploitable locally'' Patch: https://security-center.intel.com/ad...nguageid=en-fr
Posted by ashley9, 05-02-2017, 04:57 PM
Ya youre right intel have loop holes in thier security
Posted by alnitech, 05-03-2017, 10:47 AM
Let's hope that's the only security issue they have.