Intel System Management Mode Local Privilege Escalation (INTEL-SA-00018)

Medium Nessus Plugin ID 40458


The remote host is vulnerable to a local privilege escalation attack.


The version of the Intel BIOS on the remote host is vulnerable to an unspecified privilege escalation attack. Software running in ring 0 could potentially change code running in System Management Mode (SMM).

SMM is a privileged operating system that runs independently from the system's operating system. A local attacker could exploit this to run malicious code that may be undetectable from the operating system.


Upgrade to the relevant BIOS firmware referenced in the vendor's advisory.

See Also

Plugin Details

Severity: Medium

ID: 40458

File Name: intel_sa_00018.nasl

Version: $Revision: 1.9 $

Type: local

Family: Misc.

Published: 2009/07/31

Modified: 2011/03/21

Dependencies: 34098, 34097

Risk Information

Risk Factor: Medium


Base Score: 6.2

Temporal Score: 4.6

Vector: CVSS2#AV:L/AC:H/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Vulnerability Information

Required KB Items: BIOS/Version, BIOS/Vendor

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2009/07/29

Vulnerability Publication Date: 2009/07/29

Reference Information

BID: 35861

OSVDB: 57244