What is the severity of CVE-2008-7096?

CVE-2008-7096 is considered a critical vulnerability due to its potential for local privilege escalation.

How do I fix CVE-2008-7096?

To fix CVE-2008-7096, users should update to the latest BIOS firmware provided by Intel for affected boards.

What systems are affected by CVE-2008-7096?

CVE-2008-7096 affects multiple Intel Desktop and Mobile boards including DQ35JO, DQ35MP, and others listed in the vulnerability description.

Who can exploit CVE-2008-7096?

CVE-2008-7096 can be exploited by local administrators with ring 0 privileges on the affected systems.

What are the consequences of CVE-2008-7096 exploitation?

Exploitation of CVE-2008-7096 allows an attacker to gain additional privileges and potentially modify critical code running in System Management Mode.

Vulnerability/
CVE-2008-7096

medium

6.9

CWE

264

27/8/2009

7/8/2024

CVE-2008-7096

First published: Thu Aug 27 2009(Updated: )

Intel Desktop and Intel Mobile Boards with BIOS firmware DQ35JO, DQ35MP, DP35DP, DG33FB, DG33BU, DG33TL, MGM965TW, D945GCPE, and DX38BT allows local administrators with ring 0 privileges to gain additional privileges and modify code that is running in System Management Mode, or access hypervisory memory as demonstrated at Black Hat 2008 by accessing certain remapping registers in Xen 3.3.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Intel BIOS firmware	=dg33bu
Intel BIOS firmware	=dg33fb
Intel BIOS firmware	=dg33tl
Intel BIOS firmware	=dp35dp
Intel BIOS firmware	=dq35jo
Intel BIOS firmware	=dq35mp
Intel BIOS firmware	=dx38bt
Intel BIOS firmware	=mgm965tw

Remedy

http://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00017&languageid=en-fr

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2008-7096?
CVE-2008-7096 is considered a critical vulnerability due to its potential for local privilege escalation.
How do I fix CVE-2008-7096?
To fix CVE-2008-7096, users should update to the latest BIOS firmware provided by Intel for affected boards.
What systems are affected by CVE-2008-7096?
CVE-2008-7096 affects multiple Intel Desktop and Mobile boards including DQ35JO, DQ35MP, and others listed in the vulnerability description.
Who can exploit CVE-2008-7096?
CVE-2008-7096 can be exploited by local administrators with ring 0 privileges on the affected systems.
What are the consequences of CVE-2008-7096 exploitation?
Exploitation of CVE-2008-7096 allows an attacker to gain additional privileges and potentially modify critical code running in System Management Mode.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/references
agent/weakness
agent/author
agent/remedy
agent/last-modified-date
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
vendor/intel
canonical/intel bios firmware
version/intel bios firmware/dg33bu
version/intel bios firmware/dg33fb
version/intel bios firmware/dg33tl
version/intel bios firmware/dp35dp
version/intel bios firmware/dq35jo
version/intel bios firmware/dq35mp
version/intel bios firmware/dx38bt
version/intel bios firmware/mgm965tw

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.