Full Disclosure mailing list archives
Repeat of CVE-2018-4251 in Razer Laptops
From: Bailey Fox <bfox200012 () gmail com>
Date: Mon, 25 Mar 2019 02:26:10 -0500
Razer has a vulnerability affecting all current laptops, where the SPI Flash is set to full read/write and the Intel CPU is left in ME Manufacturing Mode. This allows for attackers to safeguard rootkits with Intel Boot Guard, downgrade the BIOS to exploit older vulnerabilities such as Meltdown, and many other things. They have yet to look into getting a CVE assigned, saying it isn't necessary. _______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/
Current thread:
- Repeat of CVE-2018-4251 in Razer Laptops Bailey Fox (Mar 26)