cgeorgeisaac
asked on
Security Issue - Intel management Engine (Intel-SA-00086)
Intel has come out with a critical update - Intel-SA-00086
https://www.intel.com/content/www/us/en/support/articles/000025619/software.html
How serious is this?
Is this required for users who are using wired connections or
users who are connecting wirelessly need be concerned
what is the best way to find out the type of processors in an organization and the best way to implement this.
Thank you.
https://www.intel.com/content/www/us/en/support/articles/000025619/software.html
How serious is this?
Is this required for users who are using wired connections or
users who are connecting wirelessly need be concerned
what is the best way to find out the type of processors in an organization and the best way to implement this.
Thank you.
ASKER
Thanks for your prompt reply McKnife. Would really appreciate if you could share that script.
I will send me a reminder to my office and offer it within 12 hours. It uses the command line, so you can use is as a startup script that computers execute at boot time.
ASKER
Sounds good. If I may ask, do you have similar script that can push out the 2 patches released by Intel - the FW and Driver in my network.
Yes, I have, but that will only work for certain hardware in my office and not in general. But it will give you an idea - will share as well.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thank you so much. Highly appreciated.
You are welcome. Feel free to ask for further advice.
Edit: The english string to look for is of course "This system is vulnerable". Sorry for that and please verify it.
ASKER
Will do. Thanks once again.
Honestly, if you don't understand Intel's documentation, best would be to just use the test tool and if if finds your system is vulnerable, just install the patch. The intel ME is a very, very complicated matter, because intel does not offer documentation for it. But yes, it is dangerous, if you are affected.
If you need to test a whole network, I can offer a script for that.