Hackers Can Remotely Control Intel Servers -- Even if they are turned off
According to the Hacker News, there are massive security flaws in the Management Engine of Intel servers. One of the security hole is CVE-2017-5705). It has multiple buffer overflow issues in the operating system kernel for Intel ME Firmware that could allow attackers to "load and execute code outside the visibility of the user and operating system."
The piece states that "As long as the system is connected to a line power and a network cable, these remote functions can be performed out of band even when the computer is turned off as it operates independently of the operating system."
The worst thing is that such security breaches can be done without the knowledge of system administrators, because they execute in the firmware that manages and controls the server hardware and software.
Read more at https://thehackernews.com/2017/11/intel-chipset-flaws.html?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed:+TheHackersNews+
2 Comments:
I wish this was a surprise. All of Intel's hardware is unstable and insecure. Intel hardware is completely unsuitable for use in any system.
http://eldoradoland.blogspot.co.id/
Post a Comment
<< Home