First published: Tue Nov 21 2017(Updated: )
Multiple buffer overflows in kernel in Intel Manageability Engine Firmware 11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to execute arbitrary code.
Credit: secure@intel.com
Affected Software | Affected Version | How to fix |
---|---|---|
Intel Manageability Engine Firmware | =11.0 | |
Intel Manageability Engine Firmware | =11.5 | |
Intel Manageability Engine Firmware | =11.6 | |
Intel Manageability Engine Firmware | =11.7 | |
Intel Manageability Engine Firmware | =11.10 | |
Intel Manageability Engine Firmware | =11.20 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this security flaw is CVE-2017-5705.
CVE-2017-5705 has a severity rating of 7.8 (High).
The affected software is Intel Manageability Engine Firmware versions 11.0, 11.5, 11.6, 11.7, 11.10, and 11.20.
An attacker with local access to the system can exploit CVE-2017-5705 to execute arbitrary code.
Yes, you can find more information about CVE-2017-5705 at the following references: [1](http://www.securityfocus.com/bid/101917), [2](http://www.securitytracker.com/id/1039852), [3](https://cert-portal.siemens.com/productcert/pdf/ssa-892715.pdf).