[sf-lug] Intell reveal security problems with the IME, finally.

Bobbie Sellers bliss-sf4ever at dslextreme.com
Mon Nov 20 22:12:42 PST 2017

> On Tue, Nov 21, 2017, at 05:26, Odd H. Sandvik wrote:
>> https://www.wired.com/story/intel-management-engine-vulnerabilities-pcs-servers-iot/
> And they have a tool, both for Windows and Linux, to check out your
> systems:
> https://downloadcenter.intel.com/download/27150

Note that the tool has to be run with droot privileges.
and here is my report from the use of the tool.

[root at localhost SA00086_Linux]# ./intel_sa00086.py
INTEL-SA-00086 Detection Tool
Copyright(C) 2017, Intel Corporation, All rights reserved

Application Version:
Scan date: 2017-11-21 06:02:31 GMT

*** Host Computer Information ***
Name: localhost.localdomain
Manufacturer: Dell Inc.
Model: Latitude E6420
Processor Name: Intel(R) Core(TM) i7-2620M CPU @ 2.70GHz
OS Version: PCLinuxOS 2017 PCLinuxOS (4.13.14-pclos1)

*** Intel(R) ME Information ***
Engine: Intel(R) Management Engine
SVN: 0

*** Risk Assessment ***
Based on the analysis performed by this tool: This system is not vulnerable.

For more information refer to the SA-00086 Detection Tool Guide or the 
Intel security advisory Intel-SA-00086 at the following link:


     Bobbie Sellers
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://linuxmafia.com/pipermail/sf-lug/attachments/20171120/3fc72d23/attachment.html>

More information about the sf-lug mailing list