Vulnerability CVE-2011-5174

Vulnerability Name:

CVE-2011-5174 (CCN-71625)

Assigned:

2011-12-05

Published:

2011-12-05

Updated:

2017-11-10

Summary:

Buffer overflow in Intel Trusted Execution Technology (TXT) SINIT Authenticated Code Modules (ACM) in Intel Q67 Express, C202, C204, C206 Chipsets, and Mobile Intel QM67, and QS67 Chipset before 2nd_gen_i5_i7_SINIT_51.BIN Express; Intel Q57, 3450 Chipsets and Mobile Intel QM57 and QS57 Express Chipset before i5_i7_DUAL_SINIT_51.BIN and i7_QUAD_SINIT_51.BIN; Mobile Intel GM45, GS45, and PM45 Express Chipset before GM45_GS45_PM45_SINIT_51.BIN; Intel Q35 Express Chipsets before Q35_SINIT_51.BIN; and Intel 5520, 5500, X58, and 7500 Chipsets before SINIT ACM 1.1 allows local users to bypass the Trusted Execution Technology protection mechanism and perform other unspecified SINIT ACM functions via unspecified vectors.

CVSS v3 Severity:

5.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
5.3 Medium (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

4.6 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)
3.4 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-119

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2011-5174

Source: OSVDB
Type: UNKNOWN
77554

Source: CCN
Type: SA47096
Intel Trusted Execution Technology SINIT ACMs Buffer Overflow Vulnerability

Source: SECUNIA
Type: Vendor Advisory
47096

Source: CCN
Type: INTEL-SA-00030
SINIT Buffer Overflow Vulnerability

Source: CONFIRM
Type: UNKNOWN
http://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00030&languageid=en-fr

Source: MISC
Type: UNKNOWN
http://theinvisiblethings.blogspot.com/2011/12/exploring-new-lands-on-intel-cpus-sinit.html

Source: CCN
Type: OSVDB ID: 77554
Intel Trusted Execution Technology Multiple Product SINIT Authenticated Code Modules (ACMs) Unspecified Local Overflow

Source: CCN
Type: BID-50905
Intel Trusted Execution Technology SINIT Authenticated Code Modules Buffer Overflow Vulnerability

Source: XF
Type: UNKNOWN
intel-sinit-bo(71625)

Source: XF
Type: UNKNOWN
intel-sinit-bo(71625)

Vulnerable Configuration:

Configuration 1:

cpe:/o:intel:sinit_authenticated_code_module:*:*:*:*:*:*:*:* (Version <= 2nd_gen_i5_i7_sinit_1.9.bin)

AND

cpe:/h:intel:c202_chipset:-:*:*:*:*:*:*:*

OR cpe:/h:intel:c204_chipset:-:*:*:*:*:*:*:*

OR cpe:/h:intel:c206_chipset:-:*:*:*:*:*:*:*

OR cpe:/h:intel:mobile_intel_qm67_chipset:-:*:*:*:*:*:*:*

OR cpe:/h:intel:mobile_intel_qs67_chipset:_express-:*:*:*:*:*:*:*

OR cpe:/h:intel:q67_express_chipset:-:*:*:*:*:*:*:*

Configuration 2:

cpe:/o:intel:sinit_authenticated_code_module:*:*:*:*:*:*:*:* (Version <= i5_i7_dual_sinit_18.bin)

AND

cpe:/h:intel:3450_chipset:-:*:*:*:*:*:*:*

OR cpe:/h:intel:mobile_intel_qm57_chipset:-:*:*:*:*:*:*:*

OR cpe:/h:intel:mobile_intel_qs57_express_chipset:-:*:*:*:*:*:*:*

OR cpe:/h:intel:q57_chipset:-:*:*:*:*:*:*:*

Configuration 3:

cpe:/o:intel:sinit_authenticated_code_module:*:*:*:*:*:*:*:* (Version <= i7_quad_sinit_20.bin)

AND

cpe:/h:intel:3450_chipset:-:*:*:*:*:*:*:*

OR cpe:/h:intel:mobile_intel_qm57_chipset:-:*:*:*:*:*:*:*

OR cpe:/h:intel:mobile_intel_qs57_chipset:-:*:*:*:*:*:*:*

OR cpe:/h:intel:q57_chipset:-:*:*:*:*:*:*:*

Configuration 4:

cpe:/o:intel:sinit_authenticated_code_module:*:*:*:*:*:*:*:* (Version <= gm45_gs45_pm45_sinit_21.bin)

AND

cpe:/h:intel:mobile_intel_gm45_chipset:-:*:*:*:*:*:*:*

OR cpe:/h:intel:mobile_intel_gs45_chipset:-:*:*:*:*:*:*:*

OR cpe:/h:intel:mobile_intel_pm45_express_chipset:-:*:*:*:*:*:*:*

Configuration 5:

cpe:/o:intel:sinit_authenticated_code_module:*:*:*:*:*:*:*:* (Version <= q35_sinit_18.bin)

AND

cpe:/h:intel:q35_express_chipset:-:*:*:*:*:*:*:*

Configuration 6:

cpe:/o:intel:sinit_authenticated_code_module:*:*:*:*:*:*:*:* (Version <= 1.0)

AND

cpe:/h:intel:5500_chipset:-:*:*:*:*:*:*:*

OR cpe:/h:intel:5520_chipset:-:*:*:*:*:*:*:*

OR cpe:/h:intel:7500_chipset:-:*:*:*:*:*:*:*

OR cpe:/h:intel:x58_chipset:-:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20115174	V	CVE-2011-5174	2022-05-20
oval:org.opensuse.security:def:30160	P	Security update for openssh (Important)	2021-12-06
oval:org.opensuse.security:def:33746	P	Security update for ruby2.1 (Important)	2021-12-01
oval:org.opensuse.security:def:30267	P	Security update for MozillaFirefox (Important)	2021-11-17
oval:org.opensuse.security:def:34581	P	Security update for opensc (Important)	2021-10-29
oval:org.opensuse.security:def:31291	P	Security update for util-linux (Moderate)	2021-10-19
oval:org.opensuse.security:def:33988	P	Security update for strongswan (Important)	2021-10-19
oval:org.opensuse.security:def:35269	P	Security update for python-reportlab (Moderate)	2021-09-23
oval:org.opensuse.security:def:30248	P	Security update for ghostscript (Critical)	2021-09-21
oval:org.opensuse.security:def:31247	P	Security update for java-1_8_0-openjdk (Important)	2021-08-20
oval:org.opensuse.security:def:34497	P	Security update for java-11-openjdk (Important)	2021-08-05
oval:org.opensuse.security:def:31226	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)	2021-07-21
oval:org.opensuse.security:def:30105	P	Security update for qemu (Moderate)	2021-07-21
oval:org.opensuse.security:def:34486	P	Security update for systemd (Moderate)	2021-07-20
oval:org.opensuse.security:def:34485	P	Security update for MozillaFirefox (Important)	2021-07-16
oval:org.opensuse.security:def:30209	P	Security update for spice-gtk (Important)	2021-06-08
oval:org.opensuse.security:def:31187	P	Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP3) (Important)	2021-06-04
oval:org.opensuse.security:def:33899	P	Security update for permissions (Important)	2021-04-29
oval:org.opensuse.security:def:29952	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP2) (Important)	2020-12-07
oval:org.opensuse.security:def:36019	P	puppet-2.6.18-0.4.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:31082	P	Security update for gdm (Important)	2020-12-03
oval:org.opensuse.security:def:35978	P	libupsclient1-2.6.2-0.2.4.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:29809	P	Security update for jakarta-commons-fileupload (Important)	2020-12-01
oval:org.opensuse.security:def:30311	P	Security update for tcpdump (Moderate)	2020-12-01
oval:org.opensuse.security:def:30561	P	Security update for libotr	2020-12-01
oval:org.opensuse.security:def:33516	P	Security update for pyxml	2020-12-01
oval:org.opensuse.security:def:34203	P	Security update for perl-Config-General	2020-12-01
oval:org.opensuse.security:def:34963	P	Security update for freetype2	2020-12-01
oval:org.opensuse.security:def:29866	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:30949	P	Security update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:30693	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:33527	P	Security update for Websphere Community Edition	2020-12-01
oval:org.opensuse.security:def:34252	P	Security update for postgresql10 (Important)	2020-12-01
oval:org.opensuse.security:def:35122	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:30986	P	Security update for intel-SINIT (Important)	2020-12-01
oval:org.opensuse.security:def:30783	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:33610	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:34291	P	Security update for python-pam	2020-12-01
oval:org.opensuse.security:def:35181	P	Security update for kvm (Important)	2020-12-01
oval:org.opensuse.security:def:29505	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:30840	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:31929	P	Security update for glib2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:34316	P	Security update for ruby	2020-12-01
oval:org.opensuse.security:def:35230	P	Security update for libmspack (Moderate)	2020-12-01
oval:org.opensuse.security:def:29506	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:30927	P	Security update for ghostscript-library (Important)	2020-12-01
oval:org.opensuse.security:def:31967	P	Security update for intel-SINIT (Important)	2020-12-01
oval:org.opensuse.security:def:33842	P	Security update for gtk2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:34360	P	Security update for tar (Moderate)	2020-12-01
oval:org.opensuse.security:def:29517	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:30475	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:34998	P	Security update for glibc (Important)	2020-12-01
oval:org.opensuse.security:def:34717	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:35296	P	Security update for libxml2 (Low)	2020-12-01
oval:org.opensuse.security:def:29590	P	Security update for apport (Moderate)	2020-12-01
oval:org.opensuse.security:def:30476	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:31138	P	Security update for lcms	2020-12-01
oval:org.opensuse.security:def:35038	P	Security update for intel-SINIT (Important)	2020-12-01
oval:org.opensuse.security:def:34816	P	Security update for apport (Moderate)	2020-12-01
oval:org.opensuse.security:def:35340	P	Security update for mutt (Important)	2020-12-01
oval:org.opensuse.security:def:29722	P	Security update for MozillaFirefox	2020-12-01
oval:org.opensuse.security:def:30487	P	Security update for curl	2020-12-01
oval:org.opensuse.security:def:33515	P	Security update for PostgreSQL	2020-12-01
oval:org.opensuse.security:def:34145	P	Security update for openldap2 (Important)	2020-12-01
oval:org.opensuse.security:def:34873	P	Security update for CUPS	2020-12-01

BACK