Repeat of CVE-2018-4251 in Razer Laptops

[Bailey Fox <bfox200012 () gmail com>]

Razer has a vulnerability affecting all current laptops, where the SPI
Flash is set to full read/write and the Intel CPU is left in ME
Manufacturing Mode. This allows for attackers to safeguard rootkits with
Intel Boot Guard, downgrade the BIOS to exploit older vulnerabilities such
as Meltdown, and many other things. They have yet to look into getting a
CVE assigned, saying it isn't necessary.

_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/