[Nottingham] Intel AMT authentication bypass

VM vadim+NLUG at mankevich.co.uk
Tue May 2 10:02:20 UTC 2017


I knew this would happen sooner or later... There's a great chance your PC or server has Intel ME, some of them will have working AMT. A bug there allows bypassing authentication and escalating priveleges to those of God. So yeah, someone has found a (NSA?) backdoor and Intel had to patch it. However, hardware vendors most probably will not.

The best analysis I've seen is at https://mjg59.dreamwidth.org/48429.html


--
vadim at mankevich.co.uk PGP key fingerprint
0xC046022A3A91455AF0C9BB2404BF882B1905C772
Retrieve from hkps://pgp.mit.edu



More information about the Nottingham mailing list