Intel System Management Mode Local Privilege Escalation (INTEL-SA-00017)

Medium Nessus Plugin ID 34099


The remote host is vulnerable to a local privilege escalation attack.


The version of the Intel BIOS on the remote host is known to be vulnerable to an as-yet unspecified privilege escalation attack. It would allow a local user with administrative privileges to upgrade administrative privileges to System Management Mode.


Upgrade the system BIOS on the remote host.

See Also

Plugin Details

Severity: Medium

ID: 34099

File Name: intel_bios_priv_escal.nasl

Version: $Revision: 1.17 $

Type: local

Family: Misc.

Published: 2008/09/08

Modified: 2016/05/16

Dependencies: 34097, 34098

Risk Information

Risk Factor: Medium


Base Score: 6.9

Temporal Score: 6

Vector: CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

Required KB Items: BIOS/Version, BIOS/Vendor, BIOS/ReleaseDate

Exploit Available: false

Exploit Ease: No known exploits are available

Reference Information

CVE: CVE-2008-7096

BID: 30823

OSVDB: 49901

CWE: 264