{"id":35130,"date":"2017-11-30T11:30:22","date_gmt":"2017-11-30T10:30:22","guid":{"rendered":"http:\/\/www.planet3dnow.de\/cms\/?p=35130"},"modified":"2017-11-30T12:41:12","modified_gmt":"2017-11-30T11:41:12","slug":"erste-bios-updates-fuer-intel-me-sicherheitsluecke","status":"publish","type":"post","link":"https:\/\/www.planet3dnow.de\/cms\/35130-erste-bios-updates-fuer-intel-me-sicherheitsluecke\/","title":{"rendered":"Erste BIOS-Updates f\u00fcr Intel <span class=\"caps\">ME<\/span> Sicherheitsl\u00fccke"},"content":{"rendered":"<p>Bereits am 22.11.2017 hat\u00adte das <span class=\"caps\">BSI<\/span> in einer \u00f6ffent\u00adli\u00adchen Warn\u00admel\u00addung (<a href=\"https:\/\/www.bsi.bund.de\/SharedDocs\/Warnmeldungen\/DE\/CB\/2017\/11\/warnmeldung_cb-k17-2012.html\" rel=\"noopener\" target=\"_blank\"><span class=\"caps\">CB-K17<\/span>\/2012<\/a>) mit\u00adge\u00adteilt, dass diver\u00adse Sys\u00adte\u00adme mit neu\u00ades\u00adten Intel-Pro\u00adzes\u00adso\u00adren von einer als hoch (Risi\u00adko\u00adstu\u00adfe 4) ein\u00adge\u00adstuf\u00adten Sicher\u00adheits\u00adl\u00fc\u00adcke betrof\u00adfen sind. Die L\u00fccke steckt dabei genau genom\u00admen nicht in den Pro\u00adzes\u00adso\u00adren, son\u00addern in der Intel Manage\u00adment Engi\u00adne, kurz: <span class=\"caps\">ME<\/span>. Die <span class=\"caps\">ME<\/span> war in der Ver\u00adgan\u00adgen\u00adheit schon des \u00f6fte\u00adren in die Kri\u00adtik gera\u00adten, da es sich prak\u00adtisch um ein eige\u00adnes Sys\u00adtem unter dem regu\u00adl\u00e4\u00adren x86-Sys\u00adtem han\u00addelt, das von Intel weder doku\u00admen\u00adtiert wird, noch Quell\u00adcodes \u00f6ffent\u00adlich sind, und damit ohne Zutun und Kon\u00adtrol\u00adle des Anwen\u00adders Unheil stif\u00adten kann. Die j\u00fcngs\u00adte L\u00fccke liest sich laut <span class=\"caps\">BSI<\/span> wiefolgt:<\/p>\n<blockquote><p>Meh\u00adre\u00adre Schwach\u00adstel\u00adlen in der Firm\u00adware der Intel Manage\u00adment Engi\u00adne (Intel <span class=\"caps\">ME<\/span> 11.0.0\u201311.7.0), der Intel Trus\u00adted Exe\u00adcu\u00adti\u00adon Engi\u00adne (Intel <span class=\"caps\">TXE<\/span> 3.0) und den Intel Ser\u00adver Plat\u00adform Ser\u00advices (Intel <span class=\"caps\">SPS<\/span> 4.0) erm\u00f6g\u00adli\u00adchen einem loka\u00adlen, in einem Fall auch ent\u00adfern\u00adten, ein\u00adfach authen\u00adti\u00adsier\u00adten Angrei\u00adfer die Aus\u00adf\u00fch\u00adrung belie\u00adbi\u00adgen Pro\u00adgramm\u00adcodes, wodurch die\u00adser ein Sys\u00adtem auch kom\u00adplett \u00fcber\u00adneh\u00admen kann. F\u00fcr den erfolg\u00adrei\u00adchen Angriff aus der Fer\u00adne muss der Angrei\u00adfer \u00fcber Admi\u00adnis\u00adtra\u00adtor\u00adpri\u00advi\u00adle\u00adgi\u00aden verf\u00fcgen.&nbsp;<\/p><\/blockquote>\n<p>Am 28.11.2017 hat Intel selbst eine <a href=\"https:\/\/www.intel.com\/content\/www\/us\/en\/support\/articles\/000025619\/software.html\" rel=\"noopener\" target=\"_blank\">Mit\u00adtei\u00adlung<\/a> ver\u00ad\u00f6f\u00adfent\u00adlicht, in der die betrof\u00adfe\u00adnen Sys\u00adte\u00adme benannt werden:<\/p>\n<blockquote><p>Sys\u00adtems using Intel <span class=\"caps\">ME<\/span> Firm\u00adware ver\u00adsi\u00adons 11.0.0 through 11.7.0, <span class=\"caps\">SPS<\/span> Firm\u00adware ver\u00adsi\u00adon 4.0, and <span class=\"caps\">TXE<\/span> ver\u00adsi\u00adon 3.0 are impac\u00adted. You may find the\u00adse firm\u00adware ver\u00adsi\u00adons on cer\u00adtain pro\u00adces\u00adsors from&nbsp;the:<\/p>\n<p>6th, 7th, and 8th gene\u00adra\u00adti\u00adon Intel\u00ae Core\u2122 Pro\u00adces\u00adsor Family<br>\nIntel\u00ae Xeon\u00ae Pro\u00adces\u00adsor <span class=\"caps\">E3-1200<\/span> v5 and v6 Pro\u00adduct Family<br>\nIntel\u00ae Xeon\u00ae Pro\u00adces\u00adsor Sca\u00adlable Family<br>\nIntel\u00ae Xeon\u00ae Pro\u00adces\u00adsor W Family<br>\nIntel Atom\u00ae <span class=\"caps\">C3000<\/span> Pro\u00adces\u00adsor Family<br>\nApol\u00adlo Lake Intel Atom\u00ae Pro\u00adces\u00adsor <span class=\"caps\">E3900<\/span> series<br>\nApol\u00adlo Lake Intel\u00ae Pen\u00adti\u00adum\u00ae Processors<br>\nIntel\u00ae Cele\u00adron\u00ae N and J series Processors<\/p><\/blockquote>\n<p>Zudem hat Intel ein <a href=\"https:\/\/downloadcenter.intel.com\/download\/27150\" rel=\"noopener\" target=\"_blank\">Tool<\/a> bereit\u00adge\u00adstellt, mit dem gepr\u00fcft wer\u00adden kann, ob man von de ME-L\u00fccke betrof\u00adfen&nbsp;ist.<\/p>\n<p>Heu\u00adte nun hat mit <span class=\"caps\">MSI<\/span> der ers\u00adte Main\u00adboard-Her\u00adstel\u00adler BIOS-Updates <a href=\"http:\/\/www.rbt-pressroom.eu\/de\/pressbox\/msi-stellt-sicherheitsupdate-fuer-skylake-kaby-lake-und-coffe-lake-prozessoren-bereit\/\" rel=\"noopener\" target=\"_blank\">ange\u00adk\u00fcn\u00addigt<\/a>, dar\u00adun\u00adter auch f\u00fcr die brand\u00adneu\u00aden Z370-Boards. Im <a href=\"http:\/\/forum-de.msi.com\/index.php\/topic,113353.0.html\" rel=\"noopener\" target=\"_blank\">haus\u00adei\u00adge\u00adnen Forum<\/a> gibt\u2019s zudem Hil\u00adfe\u00adstel\u00adlung. Die \u00fcbri\u00adgen Her\u00adstel\u00adler wer\u00adden sicher\u00adlich in den kom\u00admen\u00adden Tagen folgen.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Bereits am 22.11.2017 hat\u00adte das <span class=\"caps\">BSI<\/span> in einer \u00f6ffent\u00adli\u00adchen Warn\u00admel\u00addung (<span class=\"caps\">CB-K17<\/span>\/2012) mit\u00adge\u00adteilt, dass diver\u00adse Sys\u00adte\u00adme mit neu\u00ades\u00adten Intel-Pro\u00adzes\u00adso\u00adren von einer als hoch (Risi\u00adko 4) ein\u00adge\u00adstuf\u00adten Sicher\u00adheits\u00adl\u00fc\u00adcke betrof\u00adfen sind. Die L\u00fccke steckt dabei genau genom\u00admen nicht in den Pro\u00adzes\u00adso\u00adren, son\u00addern in der Intel Manage\u00adment Engi\u00adne, kurz: <span class=\"caps\">ME<\/span>. (\u2026) <a class=\"moretag\" href=\"https:\/\/www.planet3dnow.de\/cms\/35130-erste-bios-updates-fuer-intel-me-sicherheitsluecke\/\">Wei\u00adter\u00adle\u00adsen&nbsp;\u00bb<\/a><\/p>\n","protected":false},"author":2,"featured_media":6269,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"wp_typography_post_enhancements_disabled":false,"ngg_post_thumbnail":0,"footnotes":""},"categories":[12],"tags":[1004,1397,990],"class_list":["post-35130","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-aktuelles","tag-intel","tag-me","tag-msi","entry"],"share_on_mastodon":{"url":"","error":""},"_links":{"self":[{"href":"https:\/\/www.planet3dnow.de\/cms\/wp-json\/wp\/v2\/posts\/35130","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.planet3dnow.de\/cms\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.planet3dnow.de\/cms\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.planet3dnow.de\/cms\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.planet3dnow.de\/cms\/wp-json\/wp\/v2\/comments?post=35130"}],"version-history":[{"count":6,"href":"https:\/\/www.planet3dnow.de\/cms\/wp-json\/wp\/v2\/posts\/35130\/revisions"}],"predecessor-version":[{"id":35156,"href":"https:\/\/www.planet3dnow.de\/cms\/wp-json\/wp\/v2\/posts\/35130\/revisions\/35156"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.planet3dnow.de\/cms\/wp-json\/wp\/v2\/media\/6269"}],"wp:attachment":[{"href":"https:\/\/www.planet3dnow.de\/cms\/wp-json\/wp\/v2\/media?parent=35130"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.planet3dnow.de\/cms\/wp-json\/wp\/v2\/categories?post=35130"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.planet3dnow.de\/cms\/wp-json\/wp\/v2\/tags?post=35130"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}