Attacking #IntelME by @h0t_max & @_markel___ at #BHEU
1. Requires malformed file on SPI flash (needs physical access or bug in BIOS)
2. Bug in early-loaded module, so ME "disabling" by HAP is not a cure
3. Culprit is classic(!) stack overflow
4. Full code exec in ME
Congrats! pic.twitter.com/own7OZCgxg— Joanna Rutkowska (@rootkovska) December 6, 2017
Еng version: https://t.co/Xg97UEEv6V
— Maxim Goryachy (@h0t_max) December 6, 2017
Free version: https://t.co/40KiKToMQL
— Maxim Goryachy (@h0t_max) December 6, 2017
http://blog.ptsecurity.com/2017/12/huffman-tables-intel-me.html?m=1
https://habrahabr.ru/company/pt/blog/344056/
Next part of @_Dmit research "Recovering Huffman tables in Intel ME 11.x" https://t.co/mlqmtZI1Pj
— Alex Matrosov (@matrosov) December 6, 2017
Firmware Security 