Windows 10: Intel Quartus Family of Tools Privilege Escalation Vulnerability

Source: INTEL-SA-00151

:)

 

Microsoft Windows 10 suffers from a pcap 10 local privilege escalation vulnerability.

Original question 'is this a vulnerability' with existing Windows 10 build. Had noticed the exploit in the database of

Operating System: Windows ≈ Packet Storm (website DB for exploits)

The problem suggests that W10 User Settings can be challenged by select code allowing privileges to be altered.

The exploit (not correction) is revealed by following code @;

Windows 10 pcap Drive Local Privilege Escalation ≈ Packet Storm

Thanks for your help.

 

US-CERT warns of guest-to-host VM escape vulnerability

Summary: The vulnerability affects 64-bit operating systems and virtualization software running on Intel CPU hardware.


The U.S. Computer Emergency Readiness Team (CERT) has issued an alert for a dangerous guest-to-host virtual machine escape vulnerability affecting virtualization software from multiple vendors.

The vulnerability, which affects 64-bit operating systems and virtualization software running on Intel CPU hardware, exposes users to local privilege escalation attack or a guest-to-host virtual machine escape.

From the advisory:

A ring3 attacker may be able to specifically craft a stack frame to be executed by ring0 (kernel) after a general protection exception (#GP). The fault will be handled before the stack switch, which means the exception handler will be run at ring0 with an attacker’s chosen RSP causing a privilege escalation.

Affected vendors include Intel Corp., FreeBSD, Microsoft, NetBSD, Oracle, RedHat, SUSE Linux and Xen.

The US-CERT advisory contains a full list of affected software and links to vendor-supplied patches.
VMWare says its products are not affected by this issue.

 

Intel Management Engine Vulnerability and Surface Devices

Source: Intel Management Engine Vulnerability and Surface Devices Surface