Unprivileged network attack-vector to Intel CPUs CVE-2017-5689

https://nvd.nist.gov/vuln/detail/CVE-2017-5689#vulnDescriptionTitle

Saw this on Twitter -

3 Likes

As I understand this is still the Management Engine thing? This was talked about quite extensively earlier this year.

Or is it a second vulnerability?

Still seems to be the same.

3 Likes

It is.

The talk should be online somewhere.

Like the blackhat presentation title says, you can hack a powered down computer with this.

4 Likes

If you feel like disabling it. This is the tool for you.

https://hardenedlinux.github.io/firmware/2016/11/17/neutralize_ME_firmware_on_sandybridge_and_ivybridge.html

Use carefully. VERY Carefully.
Seriously, this is advanced level hacking. If fuck up, your stuff dies.

3 Likes

Actually, see top right Last revised: 08/08/2017

Yeah, i think i pass, i dont want to kill my CPU

1 Like

Another awesome PDF by ptresearch - walking through disabling ME. Screw up, and your CPU can burn…!! :fire: :fire: :fire:

Here’s the main convo - Intel Management Engine successfully hacked via USB

ME is now hackable via USB too… (closing this thread off…)

I think this puts to bed the whole “I need a backdoor that only I can use” argument for good.

Sed ‘s/think/hope/g’

2 Likes

hehe… agreed.