Interesting article today from Positive Technologies.
https://www.ptsecurity.com/ww-en/about/news/unfixable-vulnerability-in-intel-chipsets-threatens-users-and-content-rightsholders/
I can't tell if this creates an opportunity for users to fully control ME on
affected computers (via coreboot/me_cleaner), or if this is a nail in the
coffin.
In particular the following statement was interesting: "In ROM, this
vulnerability also allows for arbitrary code execution at the zero level of
privilege of Intel CSME. No firmware updates can fix the vulnerability."
_______________________________________________
coreboot mailing list -- [email protected]
To unsubscribe send an email to [email protected]
