[Nottingham] Intel AMT authentication bypass
VM
vadim+NLUG at mankevich.co.uk
Tue May 2 10:02:20 UTC 2017
I knew this would happen sooner or later... There's a great chance your PC or server has Intel ME, some of them will have working AMT. A bug there allows bypassing authentication and escalating priveleges to those of God. So yeah, someone has found a (NSA?) backdoor and Intel had to patch it. However, hardware vendors most probably will not.
The best analysis I've seen is at https://mjg59.dreamwidth.org/48429.html
--
vadim at mankevich.co.uk PGP key fingerprint
0xC046022A3A91455AF0C9BB2404BF882B1905C772
Retrieve from hkps://pgp.mit.edu
More information about the Nottingham
mailing list