Information Security


Critical Intel Firmware Updates

Tuesday, December 19, 2017

Intel has posted details of a critical firmware update which affects a large proportion of systems produced by all major PC vendors. The update includes fixes for multiple critical vulnerabilities, including one which is remotely exploitable over the network.

A detection tool is available for both Microsoft Windows and Linux systems and can be downloaded directly from Intel. It is available as both a GUI application and a scriptable command line tool.

PC vendors are currently in the process of producing firmware updates for their products, which are anticipated to be released in the near future.

We recommend immediately scanning local systems for the vulnerability and implementing firmware updates as soon as they are released. In the meantime, any vulnerable systems should be protected against remote exploitation through the use of appropriate network segregation.

Local communications to advise students and academic staff of the importance of installing the updates, once available, is also recommended.