Summary: In response to issues identified by external researchers, Intel has performed an in-depth comprehensive security review of our Intel® Management Engine (ME), Intel® Server Platform Services (SPS), and Intel® Trusted Execution Engine (TXE) with the objective of enhancing firmware resilience. US-CERT encourages users and administrators to review the Intel links below and refer to their original equipment manufacturers (OEMs) for mitigation strategies and updated firmware. Intel Security Advisory INTEL-SA-00086.
* Please try a lower page number.
The ME has its own MAC and IP address for the out-of-band interface. The ME is supposed to detect that it has been tampered with, and, if this is the case. Intel-SA-00086 security vulnerability detection tool; Slides by Igor Skochinsky.
* Please enter only numbers.
* Please try a lower page number.
* Please enter only numbers.
Just ran the tool on a Surface Pro 4 and it was found to be vulnerable as well.
Did this solve your problem?
Sorry this didn't help.
Great! Thanks for marking this as the answer.
How satisfied are you with this reply?
Thanks for your feedback, it helps us improve the site.
How satisfied are you with this response?
Thanks for your feedback.
I'm pretty sure that SP4 and anything released after SP4 is vulnerable.
Barb My Blog - http://digitalmediaphile.com/ MVP-Windows and Devices for IT Windows Insider MVP
Did this solve your problem?
Sorry this didn't help.
Great! Thanks for marking this as the answer.
How satisfied are you with this reply?
Thanks for your feedback, it helps us improve the site.
How satisfied are you with this response?
Thanks for your feedback.
My Surface Pro 4 was found to be vulnerable as well. When will we get a fix for this vulnerability? Other major PC manufactures have a software patch in the works to be released soon on their PC lines and I would think Microsoft would be right there with them. I bought a Surface Pro because I thought it was a superior tablet but if you don't back it to fix major security vulnerabilities found in the software or hardware used by your products then it is not better then the competition.
We need a fix Microsoft and we we need it ASAP!
Did this solve your problem?
Sorry this didn't help.
Great! Thanks for marking this as the answer.
How satisfied are you with this reply?
Thanks for your feedback, it helps us improve the site.
How satisfied are you with this response?
Thanks for your feedback.
Same issue on my Surface pro 4 but not on my Surface 3 as mentioned here. Can the ME be disabled without affecting usual usage of Surface 4 pros?
Did this solve your problem?
Sorry this didn't help.
Great! Thanks for marking this as the answer.
How satisfied are you with this reply?
Thanks for your feedback, it helps us improve the site.
How satisfied are you with this response?
Thanks for your feedback.
I'm pretty sure that SP4 and anything released after SP4 is vulnerable.
True = I have a surface laptop that's vurnable as well.
Just want to point out this is not just a vurnability anymore their is an existing exploit for this and parts of this will be presented at Blackhat UK 2017 06-12-17. I really hope Microsoft puts out a patch before that.
The best solution would be to disable Intel ME completly :-)
Did this solve your problem?
Sorry this didn't help.
Great! Thanks for marking this as the answer.
How satisfied are you with this reply?
Thanks for your feedback, it helps us improve the site.
How satisfied are you with this response?
Thanks for your feedback.
I can confirm that the first gen Surface Book is also affected.
Did this solve your problem?
Sorry this didn't help.
Great! Thanks for marking this as the answer.
How satisfied are you with this reply?
Thanks for your feedback, it helps us improve the site.
How satisfied are you with this response?
Thanks for your feedback.
Did this solve your problem?
Sorry this didn't help.
Great! Thanks for marking this as the answer.
How satisfied are you with this reply?
Thanks for your feedback, it helps us improve the site.
How satisfied are you with this response?
Thanks for your feedback.
So a company as big as microsoft cant stand to their under 20 products and fix this issue quickly, but Asus and Lenovo can release patches for many more systems? Hard to recommend the Surface Laptop if not even the Security aspect is true.
Did this solve your problem?
Sorry this didn't help.
Great! Thanks for marking this as the answer.
How satisfied are you with this reply?
Thanks for your feedback, it helps us improve the site.
How satisfied are you with this response?
Thanks for your feedback.
Please jump on this discussion: Microsoft: Disable Intel ME completely
Did this solve your problem?
Sorry this didn't help.
Great! Thanks for marking this as the answer.
How satisfied are you with this reply?
Thanks for your feedback, it helps us improve the site.
How satisfied are you with this response?
Thanks for your feedback.
Sa 00086 Detection Tool
Hi everyone,
Microsoft is aware of the Intel Management Engine vulnerability (Intel-SA-00086). The Intel vulnerability detection tool currently lists Microsoft Surface devices as vulnerable to this security advisory.
Microsoft has investigated the issue and found the following:
Remote exploit of this vulnerability requires Intel Active Management Technology (AMT). Current Surface devices do not allow remote connectivity to the ME because our devices do not run AMT.
Local exploit of this vulnerability requires Direct Connect Interface (DCI) access via USB, which is not provided on Surface devices.
Because of this, we believe exploits using this vulnerability are significantly reduced on Surface devices. We care deeply about ensuring our devices are reliable and secure and are working with Intel to generate fixes for current devices, which we expect to release in the near future.
Thanks,
Greg
Microsoft Surface Team support.microsoft.com/surface
23 people were helped by this reply
·
Did this solve your problem?
Sorry this didn't help.
Great! Thanks for marking this as the answer.
How satisfied are you with this reply?
Thanks for your feedback, it helps us improve the site.