657 matches found
CVE-2011-5174
CVE-2011-5174 : A buffer overflow in Intel Trusted Execution Technology (TXT) SINIT Authenticated Code Modules (ACM) affects multiple Intel chipsets (Q67, Q57, Q35, QM/QS variants, GM/PM/GS families, X58/5520/5500/7500, etc.) and their associated SINIT ACM binaries (e.g., 51.BIN variants). The ro...
CVE-2011-5174
Buffer overflow in Intel Trusted Execution Technology TXT SINIT Authenticated Code Modules ACM in Intel Q67 Express, C202, C204, C206 Chipsets, and Mobile Intel QM67, and QS67 Chipset before 2ndgeni5i7SINIT51.BIN Express; Intel Q57, 3450 Chipsets and Mobile Intel QM57 and QS57 Express Chipset...
SINIT Buffer Overflow Vulnerability
Summary: Intel® Trusted Execution Technology SINIT Authenticated Code Modules ACMs are susceptible to a buffer overflow issue. Intel is providing updated SINIT ACMs to mitigate this issue and microcode updates to revoke vulnerable SINIT ACMs. Description: When Intel® Trusted Execution Technology...
Design/Logic Flaw
Intel Q35, GM45, PM45 Express, Q45, and Q43 Express chipsets in the SINIT Authenticated Code Module ACM, which allows local users to bypass the Trusted Execution Technology protection mechanism and gain privileges by modifying the MCHBAR register to point to an attacker-controlled region, which...
CVE-2009-4419
Intel Q35, GM45, PM45 Express, Q45, and Q43 Express chipsets in the SINIT Authenticated Code Module ACM, which allows local users to bypass the Trusted Execution Technology protection mechanism and gain privileges by modifying the MCHBAR register to point to an attacker-controlled region, which...
SINIT misconfiguration allows for Privilege Escalation
Summary: An updated SINIT Authenticated Code Module ACM is available for affected Intel products to correct a misconfiguration that allows for the circumvention of Intel® Trusted Execution Technology. Description: A misconfiguration in SINIT code could potentially allow a malicious attacker to...
Design/Logic Flaw
Multiple unspecified vulnerabilities in Intel system software for Trusted Execution Technology TXT allow attackers to bypass intended loader integrity protections, as demonstrated by exploitation of tboot. NOTE: as of 20090107, the only disclosure is a vague pre-advisory with no actionable...
CVE-2009-0066
Multiple unspecified vulnerabilities in Intel system software for Trusted Execution Technology TXT allow attackers to bypass intended loader integrity protections, as demonstrated by exploitation of tboot. NOTE: as of 20090107, the only disclosure is a vague pre-advisory with no actionable...
CVE-2009-0066
Technical details for CVE-2009-0066 are not publicly available in the provided documents; no concrete information on affected products, components, root cause, impact, or remediation is present. Monitor for updates.
CVE-2008-1596
Trusted Execution in IBM AIX 6.1 uses an incorrect pathname argument in a call to the trustchkblockwrite function, which might allow local users to modify trusted files, related to missing checks in the TSDFILESLOCK policy for modifications performed via hard links, a different vulnerability than...
Hardcoded credentials
Trusted Execution in IBM AIX 6.1 uses an incorrect pathname argument in a call to the trustchkblockwrite function, which might allow local users to modify trusted files, related to missing checks in the TSDFILESLOCK policy for modifications performed via hard links, a different vulnerability than...
CVE-2008-1596
CVE-2008-1596 affects IBM AIX 6.1 Trusted Execution. The issue is an incorrect pathname argument passed to trustchk_block_write, tied to missing checks in the TSD_FILES_LOCK policy for hard-link modifications. This could allow local users to modify trusted files; the vulnerability family is relat...
CVE-2008-1596
Trusted Execution in IBM AIX 6.1 uses an incorrect pathname argument in a call to the trustchkblockwrite function, which might allow local users to modify trusted files, related to missing checks in the TSDFILESLOCK policy for modifications performed via hard links, a different vulnerability than...
Code injection
Trusted Execution in IBM AIX 6.1 uses an incorrect pathname argument in a call to the trustchkblockwrite function, which might allow local users to modify trusted files, related to an error in the support for links in the TSDFILESLOCK policy...
CVE-2007-6680
Trusted Execution in IBM AIX 6.1 uses an incorrect pathname argument in a call to the trustchkblockwrite function, which might allow local users to modify trusted files, related to an error in the support for links in the TSDFILESLOCK policy...
CVE-2007-6680
CVE-2007-6680 affects IBM AIX 6.1 Trusted Execution. The issue is an incorrect pathname argument in a call to trustchk_block_write, related to the TSD_FILES_LOCK policy, which may allow local users to modify trusted files. Impact is limited to local privilege escalation/modification rights as des...
CVE-2007-6680
Trusted Execution in IBM AIX 6.1 uses an incorrect pathname argument in a call to the trustchkblockwrite function, which might allow local users to modify trusted files, related to an error in the support for links in the TSDFILESLOCK policy...