Intel Server Platform Service 3.0.x.x Kernel memory corruption

| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 7.7 | $0-$5k | 0.00 |
Summary
A vulnerability classified as critical has been found in Intel Server Platform Service 3.0.x.x. This issue affects some unknown processing of the component Kernel. Performing a manipulation results in memory corruption. This vulnerability was named CVE-2017-5707. The attack needs to be approached locally. There is no available exploit. It is recommended to upgrade the affected component.
Details
A vulnerability classified as critical has been found in Intel Server Platform Service 3.0.x.x. This affects some unknown processing of the component Kernel. The manipulation with an unknown input leads to a memory corruption vulnerability. CWE is classifying the issue as CWE-119. The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer. This is going to have an impact on confidentiality, integrity, and availability. The summary by CVE is:
Multiple buffer overflows in kernel in Intel Trusted Execution Engine Firmware 3.0 allow attacker with local access to the system to execute arbitrary code.
The bug was discovered 11/20/2017. The weakness was presented 11/20/2017 with Positive Technologies as INTEL-SA-00086 as confirmed security advisory (Website). The advisory is shared at security-center.intel.com. This vulnerability is uniquely identified as CVE-2017-5707 since 02/01/2017. An attack has to be approached locally. Required for exploitation is a authentication. Neither technical details nor an exploit are publicly available. The advisory points out:
In response to issues identified by external researchers, Intel has performed an in-depth comprehensive security review of our Intel® Management Engine (ME), Intel® Server Platform Services (SPS), and Intel® Trusted Execution Engine (TXE) with the objective of enhancing firmware resilience. As a result, Intel has identified security vulnerabilities that could potentially place impacted platforms at risk.
Upgrading eliminates this vulnerability. A possible mitigation has been published immediately after the disclosure of the vulnerability.
The vulnerability is also documented in the vulnerability database at SecurityFocus (BID 101919†). Further details are available at wired.com. See VDB-109767, VDB-109768, VDB-109769 and VDB-109770 for similar entries. If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Product
Vendor
Name
Version
License
Website
- Vendor: https://www.intel.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 8.1VulDB Meta Temp Score: 7.9
VulDB Base Score: 8.2
VulDB Temp Score: 7.8
VulDB Vector: 🔍
VulDB Reliability: 🔍
Vendor Base Score (Intel): 8.2
Vendor Vector (Intel): 🔍
NVD Base Score: 7.8
NVD Vector: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Memory corruptionCWE: CWE-119
CAPEC: 🔍
ATT&CK: 🔍
Physical: Partially
Local: Yes
Remote: No
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
Reaction Time: 🔍
0-Day Time: 🔍
Exposure Time: 🔍
Timeline
02/01/2017 🔍11/20/2017 🔍
11/20/2017 🔍
11/20/2017 🔍
11/20/2017 🔍
11/21/2017 🔍
11/21/2017 🔍
01/24/2021 🔍
Sources
Vendor: intel.comAdvisory: INTEL-SA-00086
Researcher: Mark Ermolov, Maxim Goryachy
Organization: Positive Technologies
Status: Confirmed
Confirmation: 🔍
CVE: CVE-2017-5707 (🔍)
GCVE (CVE): GCVE-0-2017-5707
GCVE (VulDB): GCVE-100-109773
SecurityFocus: 101919 - Intel Trusted Execution Engine CVE-2017-5707 Multiple Local Buffer Overflow Vulnerabilities
Misc.: 🔍
See also: 🔍
Entry
Created: 11/21/2017 15:28Updated: 01/24/2021 22:20
Changes: 11/21/2017 15:28 (75), 12/09/2019 09:59 (5), 01/24/2021 22:20 (2)
Complete: 🔍
Cache ID: 216::103
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
No comments yet. Languages: en.
Please log in to comment.