some friends of mine informed me of this article on extremetech.com that informs us about intel patches major flaws in intel management engine.
Intel has acknowledged and patched a new suite of security problems affecting its Intel Management Engine. This subsystem controls many low-level capabilities of the SoC, and can be used for features like remote access and Intel’s Trusted Execution Engine. The company has released a list of 10 vulnerabilities across multiple products that are addressed by recent driver updates. Potentially affected systems include:
That’s Intel’s entire product line dating back to the introduction of Skylake. According to Intel, attackers could impersonate the Intel Management Engine, Server Platform Services, and/or the Trusted Execution Engine, load and execute arbitrary code without the user or OS being aware of it, and destabilize or crash a system altogether.
Intel has released a detection tool so you can check to see if your system is affected by these issues. Updates will have to be issued by firmware vendors, however, so even if your system is impacted it may not receive a fix in the near future.
I checked my Optiplex 960 tower and this is what the tool told me:
Based on the analysis performed by this tool: Detection Error: This system may be vulnerable, please install the Intel(R) MEI/TXEI driver (available from your system manufacturer).
For more information refer to the SA-00086 Detection Tool Guide or the Intel security advisory Intel-SA-00086 at the following link: security-center.intel.com/advisory.aspx
INTEL-SA-00086 Detection Tool
Application Version: 126.96.36.199
Scan date: 11/22/2017 11:32:17 AM
Host Computer Information
Manufacturer: Dell Inc.
Model: OptiPlex 960
Processor Name: Intel(R) Core(TM)2 Duo CPU E8400 @ 3.00GHz
OS Version: Microsoft Windows 7 Professional
Intel(R) ME Information
Engine: Intel(R) Management Engine
Copyright(C) 2017, Intel Corporation, All rights reserved
It is telling me to get the vendor update. I have more than 1 of these 960s where would i find this vendor update to the intel management engine that it is talking about ?
Thanks for your time in advance.
Would be nice to find this Driver for the PE 2900 Servers as well.
Dell hasn't released new chipset drivers or a new version of BIOS for the Optiplex 960 since 2014.
Don't know if that means the 960 isn't affected by those Intel issues or if Dell decided not to update this model because they don't support it beyond Win 7.
Forum Member since 2004
I am not a Dell employee
Not sure if the Intel(R) Core(TM)2 Duo CPU E8400 is affected.; it is not one of the products listed by Intel. A list of Dell systems potentially getting updates is here: www.dell.com/.../dell-client-statement-on-intel-me-txe-advisory--intel-sa-00086- ; the OptiPlex 960 is not on the list.
If you read the article it is about intel releasing the data this month not 1 or 2 years ago. This seems to be a bigger thing than the other. All the articles are dated around 11/21/2017 this would seem to indicate something else. How could dell patch something that intel is just admiting to and supplying info on ?