Vulnerability CVE-2013-5740


Published: 2013-09-12   Modified: 2013-09-14

Description:
Unspecified vulnerability in the Intel Trusted Execution Technology (TXT) SINIT Authenticated Code Modules (ACM) before 1.2, as used by the Intel QM77, QS77, Q77 Express, C216, Q67 Express, C202, C204, and C206 chipsets and Mobile Intel QM67 and QS67 chipsets, when the measured launch environment (MLE) is invoked, allows local users to bypass the Trusted Execution Technology protection mechanism and perform other unspecified SINIT ACM functions via unspecified vectors.

Type:

CWE-noinfo

CVSS2 => (AV:L/AC:M/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
6.9/10
10/10
3.4/10
Exploit range
Attack complexity
Authentication
Local
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Intel -> C202 chipset 
Intel -> C204 chipset 
Intel -> C206 chipset 
Intel -> C216 chipset 
Intel -> Mobile intel qm67 chipset 
Intel -> Mobile intel qs67 chipset 
Intel -> Q67 express chipset 
Intel -> Qm77 chipset 
Intel -> Qs77 chipset 
Intel -> Trusted execution technology sinit authenticated code module 

 References:
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00035&languageid=en-fr
http://support.citrix.com/article/CTX138633

Copyright 2022, cxsecurity.com

 

Back to Top