SB2018091109 - Multiple vulnerabilities in Intel Active Management Technology

Security Bulletin ID SB2018091109

Severity

Low

Patch available

YES

Number of vulnerabilities 3

Exploitation vector Remote access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 3 secuirty vulnerabilities.

1) Information disclosure (CVE-ID: CVE-2018-3616)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The vulnerability exists due to bleichenbacher-style side channel in TLS implementation. A remote attacker can obtain the TLS session key via the network.

2) Memory leak (CVE-ID: CVE-2018-3658)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The vulnerability exists due to memory leak. A remote attacker can cause a partial denial of service via network access.

3) Buffer overflow (CVE-ID: CVE-2018-3657)

The vulnerability allows a local attacker to gain elevated privileges.

The vulnerability exists due to buffer overflow. A local attacker can trigger memory corruption and execute arbitrary code with Intel® AMT execution privilege via local access.

Remediation

Install update from vendor's website.

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00141.html