OpenSSL* vulnerability – Software Development Tools for Intel® Active Management Technology (Intel® AMT)

Summary:

In response to the OpenSSL* advisory (CVE-2010-0740), Intel is releasing an update to the Intel® Active Management Technology (Intel® AMT) Software Development Kit (SDK)and Intel® Setup and Configuration Service (Intel® SCS) to mitigate this vulnerability. This issue does not affect the Intel® Active Management Technology implementation on Intel® vProTM technology based platforms.

The Intel® AMT SDK is the development framework for the Independent Software Vendors (ISVs) to develop manageability applications that interact with Intel® AMT-enabled systems.

Intel® SCS provides the ISVs with the tools to integrate setup and configuration capabilities into their products to setup (provision) Intel® Active Management Technology (Intel® AMT) devices.

Updated versions of Intel® AMT SDK and Intel® SCS which correct the potential denial-of-service vulnerability in OpenSSL* are available for the ISVs.

Description:

The vulnerability in the OpenSSL* library could allow a remote attacker to cause denial-of-service. Intel is releasing updated Intel® AMT SDK and Intel® SCS which incorporate the updated OpenSSL* library to mitigate this issue. It is expected that the ISVs would then provide corresponding software updates to their affected application users.

This issue does not affect Intel® Active Management Technology implementation on Intel® vProTMtechnology based platforms.

Affected products:

The ISVs utilizing products below are potentially affected by this issue.