Category Archives: Intel-SA-00075 Discovery Tool

Determine whether a system is vulnerable to the exploit documented in Intel Security Advisory INTEL-SA-00075

New: Intel-SA-00075 Discovery Tool 1.0.1.39 for the May 2017 AMT Vulnerability

Intel-SA-00075 Discovery Tool 1.0.1.39 for the May 2017 AMT Vulnerability
Determine whether a system is vulnerable to the exploit documented in Intel Security Advisory INTEL-SA-00075

This package includes a WSUS deployable CAB file, complete with deployment and reporting rules.

  • Run the Intel Discovery Tool and log the results
  • Set the exit code based on the assessment:
    • 320 – Vulnerable
    • 321 – Not Vulnerable
    • 322 – Not Vulnerable (verify configuration)
    • 323 – Unknown
    • 324 – Check with OEM (Are we missing Intel AMT/MEI/SOL drivers?)
    • 325 – Failed to read the assessment results
  • For simplified reporting, write the exit code to:
    • 64-bit systems: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\MassDeploy\History\Intel-SA-00075 Discovery Tool 1.0.1.39 for the May 2017 AMT Vulnerability | Last Exit Code
    • 32-bit systems: HKEY_LOCAL_MACHINE\SOFTWARE\MassDeploy\History\Intel-SA-00075 Discovery Tool 1.0.1.39 for the May 2017 AMT Vulnerability | Last Exit Code
  • Display the results, but only when run in interactive mode

Continue reading New: Intel-SA-00075 Discovery Tool 1.0.1.39 for the May 2017 AMT Vulnerability