Local Execution Bypass in Intel Trusted Execution Technology for Intel Chipsets
CVE-2013-5740

Currently unrated

Key Information:

Vendor: Intel
Status: Qs77 Chipset; Trusted Execution Technology Sinit Authenticated Code Module; Q67 Express Chipset; C206 Chipset
Vendor: CVE Published:; 12 September 2013

Summary

An unspecified vulnerability exists in the Intel Trusted Execution Technology (TXT) SINIT Authenticated Code Modules prior to version 1.2. This vulnerability affects numerous Intel chipsets, including the QM77, QS77, Q77 Express series, and others. By invoking the measured launch environment (MLE), local users may circumvent the protection mechanisms provided by Trusted Execution Technology, allowing them to execute unauthorized functions associated with SINIT ACM through unknown vectors. The potential for exploitation of this vulnerability necessitates prompt evaluation and remediation for affected systems to maintain security integrity.

References

https://security-center.intel.com/advisory.aspx?intelid=I...

x_refsource_CONFIRM

http://support.citrix.com/article/CTX138633

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Sep 12, 2013