Author: Chris Duckett / Source: ZDNet
Intel has announced its Active Management Technology (AMT), Standard Manageability (ISM), and Small Business Technology (SBT) firmware has been vulnerable to a pair of privilege escalation issues that could allow an attacker to remotely take control of a machine.
The first, found on AMT and ISM units could allow a remote unprivileged attacker to “gain system privileges to provisioned [chips],” Intel said. The second would allow a local attacker to gain “unprivileged network or local system privileges” on chips with AMT, ISM, and SBT.
Chips from Intel’s 2008-released Nehalem architecture onwards are impacted by the vulnerabilities if they run manageability firmware between versions 6 and 11.6.
“Intel highly recommends that the first step in all mitigation paths is to unprovision the Intel manageability SKU to address the network privilege escalation vulnerability,” the chip giant said in its mitigation guide…
Click here to read more