Intel ME vulnerability (BIOS Updates?!)

Discussion in 'Panasonic' started by tomcatsniper, May 3, 2017.

  1. tomcatsniper

    tomcatsniper Notebook Guru

    Reputations:
    15
    Messages:
    68
    Likes Received:
    19
    Trophy Points:
    16
    Hello,

    Maybe most of you already read the recent article related to Intel ME vulnerability.

    Does anyone know if Panasonic will update the BIOS of affected devices?

    I tried to add a link to the article but it was rejected. You can search for "semiaccurate intel me vulnerability" to see it.

    Regards!
     
  2. Karl Klammer

    Karl Klammer Notebook Consultant

    Reputations:
    30
    Messages:
    108
    Likes Received:
    46
    Trophy Points:
    41
  3. Shawn

    Shawn Crackpot Search Ninja and Options Whore

    Reputations:
    1,425
    Messages:
    6,810
    Likes Received:
    1,119
    Trophy Points:
    331
    ME feels vulnerable today.

    Does that count ?
    Is there a firmware update for ME?

    Will this prevent ME from getting the flu virus?
     
  4. Karl Klammer

    Karl Klammer Notebook Consultant

    Reputations:
    30
    Messages:
    108
    Likes Received:
    46
    Trophy Points:
    41
    yepp, invented by mr, hoffmann at sandoz switzerland,
    but they won't sell it anymore, as mr. leary used to have to much fun with it
     
    Last edited: May 3, 2017
    Shawn likes this.
  5. tomcatsniper

    tomcatsniper Notebook Guru

    Reputations:
    15
    Messages:
    68
    Likes Received:
    19
    Trophy Points:
    16
    AMT is disabled but still is vulnerable even if it is unconfigured and disabled.

    Intel provides fw updates to OEMs but are OEMs going to fix all the products affected? I checked the links on Dell and Fujitsu and they already have a roadmap for ME firmware releases. Didn't see anything on Panasonic site.
     
  6. Karl Klammer

    Karl Klammer Notebook Consultant

    Reputations:
    30
    Messages:
    108
    Likes Received:
    46
    Trophy Points:
    41
    care to elaborate on this one?
    ports 16992, 16993 etc pp seem to be closed when AMT is disabled.
     
  7. tomcatsniper

    tomcatsniper Notebook Guru

    Reputations:
    15
    Messages:
    68
    Likes Received:
    19
    Trophy Points:
    16
    Remote access is not possible you are right but even with AMT disabled the vulnerability can still be triggered if someone has local access to the machine.
     
    Karl Klammer likes this.
  8. kode-niner

    kode-niner Notebook Consultant

    Reputations:
    17
    Messages:
    214
    Likes Received:
    66
    Trophy Points:
    41
    On linux systems I assume that blacklisting mei and mei_me modules would help.
     
  9. Karl Klammer

    Karl Klammer Notebook Consultant

    Reputations:
    30
    Messages:
    108
    Likes Received:
    46
    Trophy Points:
    41
    sadly, nope, afaict
     
  10. tomcatsniper

    tomcatsniper Notebook Guru

    Reputations:
    15
    Messages:
    68
    Likes Received:
    19
    Trophy Points:
    16
Loading...

Share This Page