* Please try a lower page number.
When I execute Intel-SA-00086-GUI.exe vulnerability checker, I get the UAC notice, then the circle spins briefly, but there is never any output. Intel has released recommendations to address vulnerabilities in the firmware of the following Intel products: Management Engine, Server Platform Services, and Trusted Execution Engine. An attacker could exploit some of these vulnerabilities to take control of an affected system. #1188284: Intel-SA-00086 Detection Tool - For checking for vulnerable processor. Linux and Windows version. Detailed Description Purpose The INTEL-SA-00086 Detection Tool will assist with detection of the security vulnerability described in INTEL-SA-00086. The version of the tool is a command-line executable that will display a risk assessment for the system being tested. Note: Versions of the INTEL-SA-00086 Detection Tool earlier than 1.0.0.146 didn't check for CVE-2017-5711 and CVE-2017-5712. In light of Intel’s recent announcement of the vulnerabilities found and fixed in its Management Engine (ME), referred to as INTEL-SA-00086, many OEMs have begun issuing firmware updates for.
* Please enter only numbers.
* Please try a lower page number.
* Please enter only numbers.
Just ran the tool on a Surface Pro 4 and it was found to be vulnerable as well.
Did this solve your problem?
Sorry this didn't help.
Great! Thanks for marking this as the answer.
How satisfied are you with this reply?
Thanks for your feedback, it helps us improve the site.
How satisfied are you with this response?
Thanks for your feedback. Best packet capture tool for mac.
I'm pretty sure that SP4 and anything released after SP4 is vulnerable.
BarbMy Blog - http://digitalmediaphile.com/
MVP-Windows and Devices for IT
Windows Insider MVP
Did this solve your problem?
Sorry this didn't help.
Great! Thanks for marking this as the answer.
How satisfied are you with this reply?
Thanks for your feedback, it helps us improve the site.
How satisfied are you with this response?
Thanks for your feedback.
My Surface Pro 4 was found to be vulnerable as well. When will we get a fix for this vulnerability? Other major PC manufactures have a software patch in the works to be released soon on their PC lines and I would think Microsoft would be right there with them. I bought a Surface Pro because I thought it was a superior tablet but if you don't back it to fix major security vulnerabilities found in the software or hardware used by your products then it is not better then the competition.
We need a fix Microsoft and we we need it ASAP!
Did this solve your problem?
Sorry this didn't help.
Great! Thanks for marking this as the answer.
How satisfied are you with this reply?
Thanks for your feedback, it helps us improve the site.
How satisfied are you with this response?
Thanks for your feedback.
Same issue on my Surface pro 4 but not on my Surface 3 as mentioned here. Can the ME be disabled without affecting usual usage of Surface 4 pros?
Did this solve your problem?
Sorry this didn't help.
Great! Thanks for marking this as the answer.
How satisfied are you with this reply?
![Intel-sa-00086 Intel-sa-00086](https://www.softdown.eu/screen/b448f305-1508729443/5a4f918774c2b.png)
Thanks for your feedback, it helps us improve the site.
How satisfied are you with this response? Simple draw tool for mac.
Thanks for your feedback.
I'm pretty sure that SP4 and anything released after SP4 is vulnerable.
True = I have a surface laptop that's vurnable as well.
Just want to point out this is not just a vurnability anymore their is an existing exploit for this and parts of this will be presented at Blackhat UK 2017 06-12-17. I really hope Microsoft puts out a patch before that.
The best solution would be to disable Intel ME completly :-)
Did this solve your problem?
Sorry this didn't help.
Great! Thanks for marking this as the answer.
How satisfied are you with this reply?
Thanks for your feedback, it helps us improve the site.
How satisfied are you with this response?
Thanks for your feedback.
I can confirm that the first gen Surface Book is also affected.
Did this solve your problem?
Sorry this didn't help.
Great! Thanks for marking this as the answer.
How satisfied are you with this reply?
Intel-sa-00086 Detection Tool For Mac
Thanks for your feedback, it helps us improve the site.
How satisfied are you with this response?
Thanks for your feedback.
Did this solve your problem?
Sorry this didn't help.
Great! Thanks for marking this as the answer.
How satisfied are you with this reply?
Thanks for your feedback, it helps us improve the site.
![Intel-sa-00086 Detection Tool For Mac Intel-sa-00086 Detection Tool For Mac](/uploads/1/2/6/8/126885918/639317979.png)
How satisfied are you with this response?
Intel Sa 00086 Dell
Thanks for your feedback.
So a company as big as microsoft cant stand to their under 20 products and fix this issue quickly, but Asus and Lenovo can release patches for many more systems? Hard to recommend the Surface Laptop if not even the Security aspect is true.
Did this solve your problem?
Sorry this didn't help.
Great! Thanks for marking this as the answer.
How satisfied are you with this reply?
Thanks for your feedback, it helps us improve the site.
How satisfied are you with this response?
Thanks for your feedback.
Please jump on this discussion: Microsoft: Disable Intel ME completely
Did this solve your problem?
Sorry this didn't help.
Great! Thanks for marking this as the answer.
How satisfied are you with this reply?
Thanks for your feedback, it helps us improve the site.
How satisfied are you with this response?
Thanks for your feedback.
Hi everyone,
Microsoft is aware of the Intel Management Engine vulnerability (Intel-SA-00086). The Intel vulnerability detection tool currently lists Microsoft Surface devices as vulnerable to this security advisory.
Microsoft has investigated the issue and found the following:
- Remote exploit of this vulnerability requires Intel Active Management Technology (AMT). Current Surface devices do not allow remote connectivity to the ME because our devices do not run AMT.
- Local exploit of this vulnerability requires Direct Connect Interface (DCI) access via USB, which is not provided on Surface devices.
Because of this, we believe exploits using this vulnerability are significantly reduced on Surface devices. We care deeply about ensuring our devices are reliable and secure and are working with Intel to generate fixes for current devices, which we expect to release in the near future.
Thanks,
Greg
Microsoft Surface Teamsupport.microsoft.com/surface
23 people were helped by this reply
·Did this solve your problem?
Sorry this didn't help.
Great! Thanks for marking this as the answer.
How satisfied are you with this reply?
Thanks for your feedback, it helps us improve the site.
How satisfied are you with this response?
Thanks for your feedback.
* Please try a lower page number.
* Please enter only numbers.
* Please try a lower page number.
* Please enter only numbers.
Posted by1 year ago
Archived
Intel recently released a detection tool for SA-00086 vulnerability. What they don’t provide is a solution to automate the detection for multiple computers.
For a Linux system admin, who is in the look out for a solution to run the detection on 1000s of machines in his enterprise n/w, a simple custom script configuration would give you the result in a fraction of seconds. Using Desktop Central’s custom script configuration, you can run the tool on all your n/w computers. Learn more. https://blogs.manageengine.com/desktop-mobile/2017/11/28/intel-sa-00086-vulnerability-is-your-enterprise-at-risk.html?thirdpartyforum
7 comments