Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

CVE-2017-5689 PoC — 多款Intel产品安全漏洞

Source
https://github.com/embedi/amt_auth_bypass_poc
Associated Vulnerability
Title:多款Intel产品安全漏洞 (CVE-2017-5689)
Description:An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel Active Management Technology (AMT) and Intel Standard Manageability (ISM). An unprivileged local attacker could provision manageability features gaining unprivileged network or local system privileges on Intel manageability SKUs: Intel Active Management Technology (AMT), Intel Standard Manageability (ISM), and Intel Small Business Technology (SBT).
Description
CVE-2017-5689 Proof-of-Concept exploit
Readme
# Intel AMT authentication bypass example

This is a Proof-of-Concept code that demonstrates the exploitation of the __CVE-2017-5689__ vulnerability.

It is essentialy a _mitmproxy_ script that simply blanks an Authorization header "response" field.

Example usage:
```
mitmdump -p 8080 -dd --no-http2 -s blank_auth_response.py
```
File Snapshot

Log in to view the POC file snapshot cached by Shenlong Bot

Log in to view
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →