Intel System Management Mode Local Privilege Escalation (INTEL-SA-00018)

medium Nessus Plugin ID 40458

Synopsis

The remote host is vulnerable to a local privilege escalation attack.

Description

The version of the Intel BIOS on the remote host is vulnerable to an unspecified privilege escalation attack. Software running in ring 0 could potentially change code running in System Management Mode (SMM).

SMM is a privileged operating system that runs independently from the system's operating system. A local attacker could exploit this to run malicious code that may be undetectable from the operating system.

Solution

Upgrade to the relevant BIOS firmware referenced in the vendor's advisory.

See Also

http://www.nessus.org/u?5c7b6e10

Plugin Details

Severity: Medium

ID: 40458

File Name: intel_sa_00018.nasl

Version: 1.11

Type: local

Family: Misc.

Published: 7/31/2009

Updated: 11/15/2018

Supported Sensors: Nessus

Vulnerability Information

Required KB Items: BIOS/Version, BIOS/Vendor

Exploit Ease: No known exploits are available

Patch Publication Date: 7/29/2009

Vulnerability Publication Date: 7/29/2009

Reference Information

BID: 35861