Lenovo Notebook now UEFI zero-day vulnerabilities the hacker can be attack-vulnerability warning-the black bar safety net

ID MYHACK58:62201676574
Type myhack58
Reporter 佚名
Modified 2016-07-05T00:00:00


According to foreign media reports, the Security Institute Dymtro Oleksiuk said that hackers can bypass Windows basic security Protocol of the United Nations want the computer to attack, the reason is Lenovo PC drivers from Intel directly copy and paste. And other OEM vendors such as HP also exist such problems. Lenovo responded that the are trying to with Oleksiuk made contact, because he published statements are not true, but there is a problem of the code not by Lenovo to write, but third-party companies provide.

It is reported that this is not a patched UEFI firmware zero-day vulnerability present in a variety of UEFI firmware package in the system management module(SMM)in the source code, can use this vulnerability to turn off UEFI write-protected, then any changes to the device firmware. Even, the secure boot option can also be turned off, Windows 1 0 built-in Device protection and other security measures can also be bypassed. This section of the code currently running on the UEFI level, each time you start direct access, and in theory can be modified to run on the system level, while inserting malicious code.

Security research Institute, Dymtro Oleksiuk said he found a hacker can bypass Windows basic security Protocol of the United Nations want the computer to attack. And the reason is that the Lenovo drivers from Intel directly copy and paste.

Lenovo aspect of publishing open response to the said Oleksiuk's remarks there is a huge problem. The data Association aspect of the message, the vulnerability does not come from their own code, The code is made with Intel cooperation of the third party company provided, is derived from the Intel provided by the IBV(independent BIOS vendor)of the code, in addition to it looks this flaw Intel engineers as early as the 2 0 1 4 year of repair, but I don't know why it appeared in a number of manufacturers of the UEFI. Lenovo added that is currently investigating the issue and will work with partners to enact as soon as possible repair.

But so far, no for this vulnerability patch released.