Intel Smart Connect Technology CVE-2019-11167 Local Privilege Escalation Vulnerability

2019-10-08T00:00:00
ID SMNTC-110385
Type symantec
Reporter Symantec Security Response
Modified 2019-10-08T00:00:00

Description

Description

Intel Smart Connect Technology is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to gain elevated privileges. Intel Smart Connect Technology for Intel NUC products is vulnerable.

Technologies Affected

  • Intel Smart Connect Technology

Recommendations

Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.
Allow only trusted and accountable individuals to have local interactive access to the vulnerable computer.

Run all software as a nonprivileged user with minimal access rights.
To limit the impact of latent vulnerabilities, configure applications to run as a nonadministrative user with minimal access rights.

Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com.