This script is Copyright (C) 2009-2014 Tenable Network Security, Inc.
It is possible to flash the BIOS on the remote desktop system without
The version of the Intel BIOS on the remote host allows an
unauthorized user to flash the BIOS without explicit authorization
from a user or supervisor. An attacker can exploit this vulnerability
to flash the BIOS and downgrade it to an older version, which allows
the attacker to gain unauthorized access to system.
See also :
Upgrade the system BIOS on the remote host.
Risk factor :
Medium / CVSS Base Score : 6.2
CVSS Temporal Score : 4.6
Public Exploit Available : false
Nessus Plugin ID: 42180 (intel_bios_unauth_flash.nasl)
Bugtraq ID: 36720
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.