Intel Platform Vulnerability Lets Malware Erase or Block UEFI Firmware Updates

btarunr · Apr 17, 2018

A new Intel platform vulnerability emerged, chronicled by the company under CVE-2017-5703, dated April 3, which could let malware erase your motherboard UEFI BIOS, or render the EEPROM chip storing it "read-only" forever, preventing future BIOS updates, exploiting vulnerabilities in Intel's implementation of the SPI (serial peripheral interface) on its platforms. The vulnerability affects all Intel processors dating all the way back to 5th generation "Broadwell." The company quietly passed on fixes to its OEM partners to release as BIOS updates.

The vulnerability came to light in the public as Lenovo, Intel's largest OEM partner, deployed BIOS updates for its vulnerable products, while detailing it. Lenovo describes the vulnerability as "the configuration of the system firmware device (SPI flash) could allow an attacker to block BIOS/UEFI updates, or to selectively erase or corrupt portions of the firmware." It goes on to add that "this would most likely result in a visible malfunction, but could in rare circumstances result in arbitrary code execution." Intel said it discovered the vulnerability internally and hasn't noticed any exploits in the wild that take advantage of it. "Issue is root-caused, and the mitigation is known and available," the company said in a security advisory. "To Intel's knowledge, the issue has not been seen externally."

View at TechPowerUp Main Site

champsilva · Apr 17, 2018

This kind of "silente updates" is non-exception to the rule.

All major companies will do this to prevent mass knowledge and a possible outbreak

_JP_ · Apr 17, 2018

I know that is a common EEPROM, but "SU 27 D" triggered my brain differently...

eidairaman1 · Apr 17, 2018

_JP_ said:
I know that is a common EEPROM, but "SU 27 D" triggered my brain differently...

I knew what you were talkin about.

Well this is yet again another flaw.

qubit · Apr 17, 2018

Intel has such a great handle on security nowadays! :laugh:

Hood · Apr 17, 2018

So my 4th gen Haswell Z97 system isn't vulnerable to this latest thing? Still no BIOS to fix Spectre, though. Thanks, Intel - what's next, exploding chipsets?

dorsetknob · Apr 17, 2018

qubit said:
Intel has such a great handle on security nowadays!

What did you expect ( this is the company that Bought McAfee )

qubit · Apr 17, 2018

dorsetknob said:
What did you expect ( this is the company that Bought McAfee )

Good point. And McAfee is no better, is it?

trparky · Apr 17, 2018

Makes me so glad that I'm going with AMD Ryzen next week and leaving Intel behind. By going with AMD I get the added benefit of not having to take a shower after the purchase.

Ferrum Master · Apr 17, 2018

I'll crack a joke too...

Trusted Execution Platform :laugh:

Arrakis9 · Apr 17, 2018

Hood said:
So my 4th gen Haswell Z97 system isn't vulnerable to this latest thing? Still no BIOS to fix Spectre, though. Thanks, Intel - what's next, exploding chipsets?

You probably do have the security update for spectre/meltdown installed via windows update, you should check your patch history.

trparky · Apr 17, 2018

Arrakis+9 said:
You probably do have the security update for spectre/meltdown installed via windows update, you should check your patch history.

Um... no. If we go by this Microsoft KB Article (KB4090007) they only have microcode updates going back to the 6th generation.

R-T-B · Apr 17, 2018

trparky said:
Makes me so glad that I'm going with AMD Ryzen next week and leaving Intel behind. By going with AMD I get the added benefit of not having to take a shower after the purchase.

AMD has it's own set of issues. Take a shower regardless.

Hood · Apr 18, 2018

Arrakis+9 said:
You probably do have the security update for spectre/meltdown installed via windows update, you should check your patch history.

Here's a screenshot of Inspectre, the small utility to check Spectre and Meltdown vulnerability. My Haswell system has the latest Microsoft updates, but obviously no BIOS update (yet,if ever). When you scroll down in the Inspectre utility, it explains in detail why you're covered or not covered. https://www.grc.com/inspectre.htm This is a tiny (124KB) exe file that runs portable (no install), and it's the easy way to see if your system is vulnerable to either of these exploits. BTW, this is after today's (manual) update to Redstone 4, plus the first cumulative update for rs4 1803.

_JP_ · Apr 18, 2018

R-T-B said:
AMD has it's own set of issues. Take a shower regardless.

But you can use the loofah instead of sandpaper :laugh:

enxo218 · Apr 19, 2018

intel is a tiring company with its incompetence in security

Hood · Apr 19, 2018

enxo218 said:
intel is a tiring company with its incompetence in security

Not just Intel, it's every company. What's tiring is that Intel has the money to do a lot better, but their stockholders would rather pocket the cash Damned capitalism!

System Name	RBMK-1000
Processor	AMD Ryzen 7 5700G
Motherboard	Gigabyte B550 AORUS Elite V2
Cooling	DeepCool Gammax L240 V2
Memory	2x 16GB DDR4-3200
Video Card(s)	Galax RTX 4070 Ti EX
Storage	Samsung 990 1TB
Display(s)	BenQ 1440p 60 Hz 27-inch
Case	Corsair Carbide 100R
Audio Device(s)	ASUS SupremeFX S1220A
Power Supply	Cooler Master MWE Gold 650W
Mouse	ASUS ROG Strix Impact
Keyboard	Gamdias Hermes E2
Software	Windows 11 Pro

System Name	LenovoⓇ ThinkPad™ T430
Processor	IntelⓇ Core™ i5-3210M processor (2 cores, 2.50GHz, 3MB cache), Intel Turbo Boost™ 2.0 (3.10GHz), HT™
Motherboard	Lenovo 2344 (Mobile Intel QM77 Express Chipset)
Cooling	Single-pipe heatsink + Delta fan
Memory	2x 8GB KingstonⓇ HyperX™ Impact 2133MHz DDR3L SO-DIMM
Video Card(s)	Intel HD Graphics™ 4000 (GPU clk: 1100MHz, vRAM clk: 1066MHz)
Storage	SamsungⓇ 860 EVO mSATA (250GB) + 850 EVO (500GB) SATA
Display(s)	14.0" (355mm) HD (1366x768) color, anti-glare, LED backlight, 200 nits, 16:9 aspect ratio, 300:1 co
Case	ThinkPad Roll Cage (one-piece magnesium frame)
Audio Device(s)	HD Audio, RealtekⓇ ALC3202 codec, DolbyⓇ Advanced Audio™ v2 / stereo speakers, 1W x 2
Power Supply	ThinkPad 65W AC Adapter + ThinkPad Battery 70++ (9-cell)
Mouse	TrackPointⓇ pointing device + UltraNav™, wide touchpad below keyboard + ThinkLight™
Keyboard	6-row, 84-key, ThinkVantage button, spill-resistant, multimedia Fn keys, LED backlight (PT Layout)
Software	MicrosoftⓇ WindowsⓇ 10 x86-64 (22H2)

System Name	PCGOD
Processor	AMD FX 8350@ 5.0GHz
Motherboard	Asus TUF 990FX Sabertooth R2 2901 Bios
Cooling	Scythe Ashura, 2×BitFenix 230mm Spectre Pro LED (Blue,Green), 2x BitFenix 140mm Spectre Pro LED
Memory	16 GB Gskill Ripjaws X 2133 (2400 OC, 10-10-12-20-20, 1T, 1.65V)
Video Card(s)	AMD Radeon 290 Sapphire Vapor-X
Storage	Samsung 840 Pro 256GB, WD Velociraptor 1TB
Display(s)	NEC Multisync LCD 1700V (Display Port Adapter)
Case	AeroCool Xpredator Evil Blue Edition
Audio Device(s)	Creative Labs Sound Blaster ZxR
Power Supply	Seasonic 1250 XM2 Series (XP3)
Mouse	Roccat Kone XTD
Keyboard	Roccat Ryos MK Pro
Software	Windows 7 Pro 64

System Name	Quantumville™
Processor	Intel Core i7-2700K @ 4GHz
Motherboard	Asus P8Z68-V PRO/GEN3
Cooling	Noctua NH-D14
Memory	16GB (2 x 8GB Corsair Vengeance Black DDR3 PC3-12800 C9 1600MHz)
Video Card(s)	MSI RTX 2080 SUPER Gaming X Trio
Storage	Samsung 850 Pro 256GB \| WD Black 4TB \| WD Blue 6TB
Display(s)	ASUS ROG Strix XG27UQR (4K, 144Hz, G-SYNC compatible) \| Asus MG28UQ (4K, 60Hz, FreeSync compatible)
Case	Cooler Master HAF 922
Audio Device(s)	Creative Sound Blaster X-Fi Fatal1ty PCIe
Power Supply	Corsair AX1600i
Mouse	Microsoft Intellimouse Pro - Black Shadow
Keyboard	Yes
Software	Windows 10 Pro 64-bit

System Name	DEVIL'S ABYSS
Processor	i7-4790K@4.6 GHz
Motherboard	Asus Z97-Deluxe
Cooling	Corsair H110 (2 x 140mm)(3 x 140mm case fans)
Memory	16GB Adata XPG V2 2400MHz
Video Card(s)	EVGA 780 Ti Classified
Storage	Intel 750 Series 400GB (AIC), Plextor M6e 256GB (M.2), 13 TB storage
Display(s)	Crossover 27QW (27"@ 2560x1440)
Case	Corsair Obsidian 750D Airflow
Audio Device(s)	Realtek ALC1150
Power Supply	Cooler Master V1000
Mouse	Ttsports Talon Blu
Keyboard	Logitech G510
Software	Windows 10 Pro x64 version 1803
Benchmark Scores	Passmark CPU score = 13080

Intel Platform Vulnerability Lets Malware Erase or Block UEFI Firmware Updates

btarunr

Editor & Senior Moderator

champsilva

_JP_

eidairaman1

The Exiled Airman

qubit

Overclocked quantum bit

Hood

dorsetknob

"YOUR RMA REQUEST IS CON-REFUSED"

qubit

Overclocked quantum bit

trparky

Ferrum Master

Arrakis9

trparky

R-T-B

Hood

Attachments

_JP_

enxo218

Hood

System Name	My Ryzen 7 7700X Super Computer
Processor	AMD Ryzen 7 7700X
Motherboard	Gigabyte B650 Aorus Elite AX
Cooling	DeepCool AK620 with Arctic Silver 5
Memory	2x16GB G.Skill Trident Z5 NEO DDR5 EXPO (CL30)
Video Card(s)	XFX AMD Radeon RX 7900 GRE
Storage	Samsung 980 EVO 1 TB NVMe SSD (System Drive), Samsung 970 EVO 500 GB NVMe SSD (Game Drive)
Display(s)	Acer Nitro XV272U (DisplayPort) and Acer Nitro XV270U (DisplayPort)
Case	Lian Li LANCOOL II MESH C
Audio Device(s)	On-Board Sound / Sony WH-XB910N Bluetooth Headphones
Power Supply	MSI A850GF
Mouse	Logitech M705
Keyboard	Steelseries
Software	Windows 11 Pro 64-bit
Benchmark Scores	https://valid.x86.fr/liwjs3

System Name	HELLSTAR
Processor	AMD RYZEN 9 5950X
Motherboard	ASUS Strix X570-E
Cooling	2x 360 + 280 rads. 3x Gentle Typhoons, 3x Phanteks T30, 2x TT T140 . EK-Quantum Momentum Monoblock.
Memory	4x8GB G.SKILL Trident Z RGB F4-4133C19D-16GTZR 14-16-12-30-44
Video Card(s)	Sapphire Pulse RX 7900XTX. Water block. Crossflashed.
Storage	Optane 900P[Fedora] + WD BLACK SN850X 4TB + 750 EVO 500GB + 1TB 980PRO+SN560 1TB(W11)
Display(s)	Philips PHL BDM3270 + Acer XV242Y
Case	Lian Li O11 Dynamic EVO
Audio Device(s)	SMSL RAW-MDA1 DAC
Power Supply	Fractal Design Newton R3 1000W
Mouse	Razer Basilisk
Keyboard	Razer BlackWidow V3 - Yellow Switch
Software	FEDORA 41

System Name	Beyond Journeys End
Processor	Ryzen 7 9700x
Motherboard	ROG STRIX B850-I
Cooling	Fractal 280 w/ Thermaltake toughfans
Memory	32Gb Gskill DDR5 6000
Video Card(s)	3080ti Game Rock
Storage	Intel 905p 960gb + 2tb SKhynix P41
Display(s)	LG C2 OLED 42"
Case	Fractal Era 2
Audio Device(s)	HD58X
Power Supply	Asus loki 850 SFX-L
Mouse	Glorious Model O
Keyboard	Akko Mod 007b HE
Software	Tiny 11 + Ubuntu dual boot

System Name	Pioneer
Processor	Ryzen 9 9950X
Motherboard	MSI MAG X670E Tomahawk Wifi
Cooling	Noctua NH-D15 + A whole lotta Sunon, Phanteks and Corsair Maglev blower fans...
Memory	128GB (4x 32GB) G.Skill Flare X5 @ DDR5-4200(Running 1:1:1 w/FCLK)
Video Card(s)	XFX RX 7900 XTX Speedster Merc 310
Storage	Intel 5800X Optane 800GB boot, +2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs, 1x 2TB Seagate Exos 3.5"
Display(s)	55" LG 55" B9 OLED 4K Display
Case	Thermaltake Core X31
Audio Device(s)	TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply	FSP Hydro Ti Pro 850W
Mouse	Logitech G305 Lightspeed Wireless
Keyboard	WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software	Gentoo Linux x64, other office machines run Windows 11 Enterprise

Processor	Intel core i5 4590s
Motherboard	Asus Z97 Pro Gamer
Cooling	Evercool EC115A 915SP Cpu cooler,Coolermaster [200mm (front and top)+140mm rear]
Memory	Corsair 16GB(4x4) ddr3 CMZ16GX3M4X1600C9(Ver8.16)(XMP)
Video Card(s)	MSI GTX 970 GAMING 4G
Storage	Western Digital WDC WD2001FAS 2TB Black, Toshiba DT01ACA100 1TB
Display(s)	LG Flatron L177WSB
Case	Coolermaster CM Storm Enforcer
Audio Device(s)	Creative A550 Speakers 5.1 channel
Power Supply	SuperFlower Leadex 2 Gold 650W SF-650F14EG
Mouse	PLNK M-740 Optical Mouse
Keyboard	ibuypower GKB100 Gaming Keyboard
Software	Windows 7 Sp1 64 bit