:: [DNG] OT: Intel SMM exploit
Startseite
Nachricht löschen
Nachricht beantworten
Autor: Florian Zieboll
Datum:  
To: [DNG]
Betreff: [DNG] OT: Intel SMM exploit

Hallo list,

just for the case you didn't read it yet: Intel's "ring -2" System
Management Mode is starting to disintegrate.

Lenovo Security Advisory: LEN-8324
Potential Impact: Execution of code in SMM by an attacker with local
administrative access
Severity: High
Scope of Impact: Industry-wide

Money Quote:

| Importantly, because Lenovo did not develop the vulnerable SMM code
| and is still in the process of determining the identity of the
| original author, it does not know its originally intended purpose.


https://support.lenovo.com/de/en/solutions/LEN-8324

http://blog.cr4.sh/2016/06/exploring-and-exploiting-lenovo.html
https://github.com/Cr4sh/ThinkPwn


libre Grüße,

Florian