New
#1
As a Surface user.....thought for a moment reading the misleading title....the need to purchase extra toilet rolls.....but having read the article with an M$ explanation that it should not effect Surface products.
Microsoft is aware of the Intel Management Engine vulnerability (Intel-SA-00086). The Intel vulnerability detection tool currently lists Microsoft Surface devices as vulnerable to this security advisory.Microsoft has investigated the issue and found the following:
- Remote exploit of this vulnerability requires Intel Active Management Technology (AMT). Current Surface devices do not allow remote connectivity to the ME because our devices do not run AMT.
- Local exploit of this vulnerability requires Direct Connect Interface (DCI) access via USB, which is not provided on Surface devices.
Because of this, we believe exploits using this vulnerability are significantly reduced on Surface devices. We care deeply about ensuring our devices are reliable and secure and are working with Intel to generate fixes for current devices, which we expect to release in the near future.
Source: Intel Management Engine Vulnerability and Surface Devices Surface
As a Surface user.....thought for a moment reading the misleading title....the need to purchase extra toilet rolls.....but having read the article with an M$ explanation that it should not effect Surface products.
This particular vulnerability has proved more "interesting" than previous ones. That's because vulnerable devices REQUIRE a firmware update to patch them. Just went through this on my Asrock motherboards, as recited in a recent blog post: More MEI Weirdness - Windows Enterprise Desktop. Not hard to fix, by any stretch, but demanded daily check-ins on my part and some flailing about when trying to implement the fix.
Thanks for sharing, Brink. Happy holidays, too!
--Ed--