Intel AMT drama:
1. Details by the original discoverer: https://www.embedi.com/files/white-papers/Silent-Bob-is-Silent.pdf
2. Independent rediscovery: https://t.co/l0rDyFlb0N
TLDR: trivial auth bug in the AMT web server...
What consequences should face those, who build web servers into our CPUs?
Remember Intel's been keen on mocking OSS for its lack of security & liability. Here's a fragment from the 2014 book by Intel ME architect:
After a week of vacation I'm feeling rejuvenated and ready for much coding.
This might be some of the most beautiful binary file format prints.
Follow up: callstack was not even close, but had a good time root causing.
Firmware engineer working on bluetooth stuff. Enjoys reading datasheets, and all around nerd.
Server run by the main developers of the project It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!