[sf-lug] Intell reveal security problems with the IME, finally.
Bobbie Sellers
bliss-sf4ever at dslextreme.com
Mon Nov 20 22:12:42 PST 2017
> On Tue, Nov 21, 2017, at 05:26, Odd H. Sandvik wrote:
>> https://www.wired.com/story/intel-management-engine-vulnerabilities-pcs-servers-iot/
> And they have a tool, both for Windows and Linux, to check out your
> systems:
>
> https://downloadcenter.intel.com/download/27150
Note that the tool has to be run with droot privileges.
and here is my report from the use of the tool.
[root at localhost SA00086_Linux]# ./intel_sa00086.py
INTEL-SA-00086 Detection Tool
Copyright(C) 2017, Intel Corporation, All rights reserved
Application Version: 1.0.0.128
Scan date: 2017-11-21 06:02:31 GMT
*** Host Computer Information ***
Name: localhost.localdomain
Manufacturer: Dell Inc.
Model: Latitude E6420
Processor Name: Intel(R) Core(TM) i7-2620M CPU @ 2.70GHz
OS Version: PCLinuxOS 2017 PCLinuxOS (4.13.14-pclos1)
*** Intel(R) ME Information ***
Engine: Intel(R) Management Engine
Version: 7.1.13.1088
SVN: 0
*** Risk Assessment ***
Based on the analysis performed by this tool: This system is not vulnerable.
For more information refer to the SA-00086 Detection Tool Guide or the
Intel security advisory Intel-SA-00086 at the following link:
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00086&languageid=en-fr
==================================
Bobbie Sellers
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://linuxmafia.com/pipermail/sf-lug/attachments/20171120/3fc72d23/attachment.html>
More information about the sf-lug
mailing list