Vatsvagiri kubva kuPositive Technologies
Kusagadzikana kunokonzerwa nebug mune hardware uye Intel CSME firmware, iyo iri mubhoot ROM, iyo inodzivirira dambudziko kubva pakugadziriswa mumidziyo yatove kushandiswa. Nekuda kwekuvapo kwehwindo panguva yeIntel CSME restart (semuenzaniso, kana uchitangazve kubva kuhope mode), kuburikidza neDMA manipulation zvinokwanisika kunyora data kuIntel CSME static memory uye gadzirisa yakatotangwa Intel CSME memory peji matafura kuti abvise kuurayiwa, tora kiyi yepuratifomu, uye uwane kutonga pamusoro pechizvarwa che encryption kiyi yeIntel CSME modules. Tsanangudzo yekushandiswa kwekusagadzikana kwakarongwa kuzoburitswa gare gare.
Pamusoro pekubvisa kiyi, iko kukanganisa kunobvumirawo kodhi kuti iitwe pa zero ropafadzo level
Zvinogoneka mhedzisiro yekuwana kiyi yepuratifomu inosanganisira tsigiro yeIntel CSME zvikamu, kukanganisa kwema media encryption masisitimu akavakirwa paIntel CSME, pamwe nemukana wekugadzira zviziviso zveEPID (
Izvo zvinocherechedzwa kuti midzi kiyi yepuratifomu inochengetwa mune encrypted fomu uye kuti iwanikwe zvizere zvinodikanwa kuti uone kiyi yehardware yakachengetwa muSKS (Chengetedza Kiyi Kuchengeta). Kiyi yakatsanangurwa haina kusarudzika uye yakafanana kuchizvarwa chega chega cheIntel chipsets. Sezvo bug ichibvumira kodhi kuti iitwe pachinhanho nzira kiyi yechizvarwa muSKS isati yavharwa, zvinofanotaurwa kuti munguva pfupi iyi kiyi yehardware ichatemwa.
Source: opennet.ru