Intel Desktop Boards BIOS Unauthorized BIOS Flash (INTEL-SA-00019)
Medium Nessus Plugin ID 42180
SynopsisIt is possible to flash the BIOS on the remote desktop system without explicit authorization.
DescriptionThe version of the Intel BIOS on the remote host allows an unauthorized user to flash the BIOS without explicit authorization from a user or supervisor. An attacker can exploit this vulnerability to flash the BIOS and downgrade it to an older version, which allows the attacker to gain unauthorized access to system.
SolutionUpgrade the system BIOS on the remote host.