top | item 17586905 (no title) lurker456 | 7 years ago That's to access AMT. AMT is a module running on top of ME and is disabled by default. discuss order hn newest close04|7 years ago And it's exactly what the CVEs are about, isn't it?From the article: vulnerability enables full-blown remote code execution in the AMT process of the Management Engine.From Intel: https://www.intel.com/content/www/us/en/security-center/advi...Buffer overflow in HTTP handler in IntelĀ® Active Management Technology in Intel Converged Security Manageability Engine zamadatix|7 years ago Yes, it's what the CVEs are about, but the whole comment thread has been riddled with people talking past one another creating confusion:- The CVEs are about AMT portion only not the base IME- Not all affected hardware will be patched (based on age)- AMT can be disabled (and is by default)- IME/AMT run on a croprocessor on the motherboard - not the CPU itself- AMT runs an HTTP server for IPMI abilities load replies (2)
close04|7 years ago And it's exactly what the CVEs are about, isn't it?From the article: vulnerability enables full-blown remote code execution in the AMT process of the Management Engine.From Intel: https://www.intel.com/content/www/us/en/security-center/advi...Buffer overflow in HTTP handler in IntelĀ® Active Management Technology in Intel Converged Security Manageability Engine zamadatix|7 years ago Yes, it's what the CVEs are about, but the whole comment thread has been riddled with people talking past one another creating confusion:- The CVEs are about AMT portion only not the base IME- Not all affected hardware will be patched (based on age)- AMT can be disabled (and is by default)- IME/AMT run on a croprocessor on the motherboard - not the CPU itself- AMT runs an HTTP server for IPMI abilities load replies (2)
zamadatix|7 years ago Yes, it's what the CVEs are about, but the whole comment thread has been riddled with people talking past one another creating confusion:- The CVEs are about AMT portion only not the base IME- Not all affected hardware will be patched (based on age)- AMT can be disabled (and is by default)- IME/AMT run on a croprocessor on the motherboard - not the CPU itself- AMT runs an HTTP server for IPMI abilities load replies (2)
close04|7 years ago
From the article: vulnerability enables full-blown remote code execution in the AMT process of the Management Engine.
From Intel: https://www.intel.com/content/www/us/en/security-center/advi...
Buffer overflow in HTTP handler in IntelĀ® Active Management Technology in Intel Converged Security Manageability Engine
zamadatix|7 years ago
- The CVEs are about AMT portion only not the base IME
- Not all affected hardware will be patched (based on age)
- AMT can be disabled (and is by default)
- IME/AMT run on a croprocessor on the motherboard - not the CPU itself
- AMT runs an HTTP server for IPMI abilities