Guru3D.com
  • HOME
  • NEWS
    • Channels
    • Archive
  • DOWNLOADS
    • New Downloads
    • Categories
    • Archive
  • GAME REVIEWS
  • ARTICLES
    • Rig of the Month
    • Join ROTM
    • PC Buyers Guide
    • Guru3D VGA Charts
    • Editorials
    • Dated content
  • HARDWARE REVIEWS
    • Videocards
    • Processors
    • Audio
    • Motherboards
    • Memory and Flash
    • SSD Storage
    • Chassis
    • Media Players
    • Power Supply
    • Laptop and Mobile
    • Smartphone
    • Networking
    • Keyboard Mouse
    • Cooling
    • Search articles
    • Knowledgebase
    • More Categories
  • FORUMS
  • NEWSLETTER
  • CONTACT

New Reviews
Hitman III: PC graphics perf benchmark review
TeamGroup CX2 1TB SATA3 SSD review
EVGA GeForce RTX 3070 FTW3 Ultra review
Corsair 5000D PC Chassis Review
NZXT Kraken X63 RGB Review
ASUS Radeon RX 6900 XT STRIX OC LC Review
TerraMaster F5-221 NAS Review
MSI Radeon RX 6800 XT Gaming X TRIO Review
Sapphire Radeon RX 6800 NITRO+ review
Corsair HS70 Bluetooth Headset Review

New Downloads
Prime95 download version 30.4 build 8
CrystalDiskInfo 8.10.0 Download
SiSoft Sandra 20/20 download v30.92
AMD Radeon Adrenalin Edition 21.1.1 driver download
CPU-Z download v1.95
Intel HD graphics Driver Download Version: DCH 27.20.100.9168
HWiNFO Download v6.41 (4355 Beta)
GeForce 461.33 hotfix driver download
AIDA64 Download Version 6.32.5620 beta
3DMark Download v2.16.7117 + Time Spy


New Forum Topics
RTX 3060 Ti owners thread GeForce Hotfix Driver Version 461.33 Quick question: newer gen GPU for 600W PSU Does a really good silent video card exist? E8600@4.5ghz or Q9650@4ghz for Windows XP reverse sleeper build ? NVIDIA GeForce RTX 3060 available at the end of February RTSS 6.7.0 beta 1 The AMD Ryzen All In One Tread /Overclocking/Memory Speeds & Timings/Tweaking/Cooling Part 2 win10 20H2 - media player black screen ... Radeon Software Adrenalin 2020 Edition 21.1.1 Download & Discussion




Guru3D.com » News » Intel CPUs since Skylake susceptible to USB vulnerability

Intel CPUs since Skylake susceptible to USB vulnerability

by Hilbert Hagedoorn on: 11/13/2017 08:26 AM | source: | 12 comment(s)
Intel CPUs since Skylake susceptible to USB vulnerability

Positive Technologies, which in September said it has a way to drill into Intel's secretive Management Engine technology hideen in its chipsets, dropped more details. The IME is a separate controller on the Intel Platform Platform Controller Hub (PCH), which has access to communication between the processor and other hardware.

The biz has already promised to demonstrate a so-called God-mode hack this December, saying they've found a way for "an attacker of the machine to run unsigned code in the Platform Controller Hub on any motherboard." Reports the register:

For those who don't know, for various processor chipset lines, Intel's Management Engine sits inside the Platform Controller Hub, and acts as a computer within your computer. It runs its own OS, on its own CPU, and allows sysadmins to remotely control, configure and wipe machines over a network. This is useful when you're managing large numbers of computers, especially when an endpoint's main operating system breaks down and the thing won't even boot properly. Getting into and hijacking the Management Engine means you can take full control of a box, underneath and out of sight of whatever OS, hypervisor or antivirus is installed. This powerful God-mode technology is barely documented and supposedly locked down to prevent miscreants from hijacking and exploiting the engine to silently spy on users or steal corporate data. Positive says it's found a way to commandeer the Management Engine, which is bad news for organizations with the technology deployed. 
 


 

For some details, we'll have to wait, but what's known now is bad enough: Positive has confirmed that recent revisions of Intel's Management Engine (IME) feature Joint Test Action Group (JTAG) debugging ports that can be reached over USB. JTAG grants you pretty low-level access to code running on a chip, and thus we can now delve into the firmware driving the Management Engine. 

With knowledge of the firmware internals, security vulnerabilities can be found and potentially remotely exploited at a later date. Alternatively, an attacker can slip into the USB port and meddle the engine as required right there and then. There have been long-running fears IME is insecure, which is not great as it's built right into the chipset: it's a black box of exploitable bugs, as was confirmed in May when researchers noticed you could administer the Active Management Technology software suite running on the microcontroller with an empty credential string over a network.



Intel CPUs since Skylake susceptible to USB vulnerability




« Ubisoft Halts Online Features Older Games · Intel CPUs since Skylake susceptible to USB vulnerability · Review: Gigabyte X399 DESIGNARE EX Ripping Some Threads »

Related Stories

High-end Intel CPUs more expensive in EU due to strong dollar - 11/25/2014 09:21 AM
Interesting, as the US Dollar strengthens itself, the prices of some product in the EU start to rise. High-End Intel CPUs for example are seeing a strong increase in pricing. The Core i7-4790K went u...

Acer Aspire R7 Notebook has 4th Generation Intel CPU and Active Stylus Support - 11/21/2013 04:09 PM
Acer America today announced the immediate availability of the new Aspire R7-572, the second generation of Acer's revolutionary notebook that redefined the touch and type computing experience through...

35W Quad-Core Intel Ivy Bridge Intel CPUs for OEMs Detailed - 12/13/2011 12:46 PM
More news on the Intel front today,

AMD benchmarks FX-Series Bulldozer Against Intel CPUs - 09/17/2011 02:54 AM
Over at this weeks IDF AMD was closeby to the Intel event with a mini press event, one of the more interesting demonstrations is a comparison between an unreleased FX-Series processor and some Intel C...

Intel CPU Virtualization confusion undermining Windows 7 XP Mode - 05/08/2009 08:16 AM
The widespread Windows 7 RC release has meant many users attention turned to the OS' recently-announced Windows XP Mode, only to discover what Microsoft had warned from the start: many processors won'...


3 pages 1 2 3


tsunami231
Senior Member



Posts: 11208
Joined: 2003-05-24

#5491863 Posted on: 11/13/2017 05:20 PM
if one dont let random usb devices to be attached system it dont mean anything, not so much in corporate environment i guess but knowing what the MEI does is and being out bag at that isnt good cause now those "miscreants" will now be looking for uses of this or find other ways in.

these days people that find this "exploits" dont report to correct people but just make it know to all and make things worse.

fry178
Senior Member



Posts: 1656
Joined: 2012-04-30

#5491996 Posted on: 11/14/2017 04:30 AM
i still see this more of an issue as something like win "spying" on me.
first thing i do is check bios for settings and after windows is installed disable the device in DM.
another reason i'll never run the driver disc from the board/"auto" install shit...

3 pages 1 2 3


Post New Comment
Click here to post a comment for this news story on the message forum.


Guru3D.com © 2021