Home / Professional / Intel stamps out nine year-old security bug

Intel stamps out nine year-old security bug

In a classic case of “better late than never” Intel has informed customers it has finally eradicated its INTEL-SA-00075 bug and provided a set of tools to diagnose, mitigate and/or resolve the issue.

From Nehalem to Kaby Lake, every Intel CPU built since the introduction of the Core microarchitecture has been plagued with a security bug which allowed unprivileged network attackers to remotely gain system privileges to computers operating under Intel Active Management Technology (AMT) and Intel Standard Manageability (ISM), usually used in corporate environments to remotely manage your IT assets. The bug relates to a flaw in the Management Engine and while one may think they are impervious because they have the latest patches on their PC, one should check again. Also, you needn't operate a PC provisioned with AMT or ISM in a business environment to be vulnerable, it seems, you are still vulnerable within a local network.

While most machines will be updated via the OEM's firmware patches, the bug goes back long enough for you to do your own patching as the computer may have reached its end of support. If that is the case, head on down to Intel's download center and follow the instructions. If you haven't found a specific patch for your PC, you can run Intel's vulnerability detection tool or simply nerf the necessary processes running in the background by following the instructions in Intel's Mitigation Guide.

The bug discovery was attributed to Maksim Malyutin from Embedi, although we are aware that Charlie Demerjian over at Semiaccurate has been raging about it for years now, and with good reason.

KitGuru Says: While there have been no notable public incidents attributed to this bug, it seems a would-be attacker would have full access to machines operating under the bug. That is downright scary, considering it affects every Intel Core-based machine built in the last 9 years.

 

Become a Patron!

Check Also

CD Projekt Red has ‘no plans’ to update Cyberpunk 2077 for PS5 Pro

If you recently invested in a PS5 Pro and had hopes for a Cyberpunk 2077 update, then we have some bad news for you...

3 comments

  1. I commenced freelancing over net, by doing some fundamental tasks which actually desired a pc and having access to broadband and consequently I am more happy than ever… 6 months have passed by ever since i began this furthermore i received a residual income full amount of of 36,000 dollars… Usually I earn eighty dollars each hour and work for three to four hours nearly all of the days.And great advantage of this is that you can keep control of time while you work and for how long as you like and you achieve a take-home pay every week. —->>>LEARN MORE Regarding It here-> GET.LC/3EBeI

    dfdfsds

  2. My last paycheck was $22500 for working 12 hours a week online.Start earning $97/hour by working online from your home for few hours each day with GOOGLE… Get regular payments on weekly basis… All you need is a computer, internet connection and a litte free time… Read more here
    !wr202c:
    ➽➽
    ➽➽➽➽ http://GoogleFinancialCashJobs202AmericaTech/GetPaid$97/Hour ★✫★★✫★✫★★✫★✫★★✫★✫★★✫★✫★★✫★✫★★✫★✫★★✫★✫★★✫★✫★★✫★✫★★✫★✫★★✫:::!wr202u:……..

  3. My last paycheck was $22500 for working 12 hours a week online.Start earning $97/hour by working online from your home for few hours each day with GOOGLE… Get regular payments on weekly basis… All you need is a computer, internet connection and a litte free time… Read more here
    !wr367c:
    ➽➽
    ➽➽➽➽ http://GoogleFinancialCashJobs367SmartHost/GetPaid$97/Hour ★✫★★✫★✫★★✫★✫★★✫★✫★★✫★✫★★✫★✫★★✫★✫★★✫★✫★★✫★✫★★✫★✫★★✫★✫★★✫:::!wr367u:…..