PRIOn knowledge basePRION:CVE-2017-5689Design/Logic Flaw
An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel Active Management Technology (AMT) and Intel Standard Manageability (ISM). An unprivileged local attacker could provision manageability features gaining unprivileged network or local system privileges on Intel manageability SKUs: Intel Active Management Technology (AMT), Intel Standard Manageability (ISM), and Intel Small Business Technology (SBT).
References
www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
www.securityfocus.com/bid/98269
www.securitytracker.com/id/1038385
cert-portal.siemens.com/productcert/pdf/ssa-874235.pdf
downloadmirror.intel.com/26754/eng/INTEL-SA-00075%20Mitigation%20Guide-Rev%201.1.pdf
h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03754en_us
security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00075&languageid=en-fr
security.netapp.com/advisory/ntap-20170509-0001/
www.embedi.com/files/white-papers/Silent-Bob-is-Silent.pdf
www.embedi.com/news/mythbusters-cve-2017-5689
www.tenable.com/blog/rediscovering-the-intel-amt-vulnerability
Related
