Threat Watch

Critical Intel AMT Flaw Patched

Intel has released their September 2020 platform update addressing nine security vulnerabilities detailed over five security advisories. One of the flaws addressed is within Intel’s Active Management Technology (AMT) platform. AMT is a remote management platform designed to manage machines with certain Intel processors through the network, independent of the operating system. INTEL-SA-00404 is an advisory warning of a possible escalation of privilege due to “improper buffer restrictions” in AMT’s networking implementation. All versions before 11.8.79, 11.12.79, 11.22.79, 12.0.68 and 14.0.39 are affected by this flaw. Even in cases where AMT is available but not configured, authenticated users with local access may still be able to escalate privileges.

Subscribe to Threat Watch

Daily summaries of threats, delivered straight to your inbox!


Click Here to Subscribe to Threat Watch

ANALYST NOTES

Intel’s INTEL-SA-00404 advisory notes that older versions of the AMT platform (3.X – 10.X) were not tested for the flaw and that there is no current plan to update these versions. Binary Defense highly recommends following Intel’s advice to upgrade to the latest version of the AMT platform which is provided by the system’s manufacturer.

Source: https://www.bleepingcomputer.com/news/security/intel-fixes-critical-flaw-in-corporate-remote-management-platform/

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00404.html

Facebook Twitter Instagram Youtube Linkedin
Solutions
Become a Reseller

Industries

Resources

About

Contact Us
Contact Support