=====================================================================
                                   CERT-Renater

                        Note d'Information No. 2009/VULN435
_____________________________________________________________________

DATE                      : 03/11/2009

HARDWARE PLATFORM(S)      : Intel® Desktop Boards.

OPERATING SYSTEM(S)       : INTEL BIOS running on Intel® Desktop Board.

======================================================================
http://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00020&languageid=en-fr
______________________________________________________________________

Intel® Desktop Board Buffer Overflow Local Privilege Escalation

Intel ID:  INTEL-SA-00020
Product family:  Intel® Desktop Boards
Impact of vulnerability:  Elevation of Privilege
Severity rating:  Important
Original release:  Oct 30, 2009
Last revised:  	Oct 30, 2009


Summary:
Updated BIOS is available for Intel® Desktop Board products to correct
a buffer overflow in the Bitmap processing code.

Description:
A buffer overflow in the Bitmap processing code for Intel® Desktop
motherboards could potentially allow a local malicious attacker to
perform a Denial Of Service or Privilege Escalation. Intel has
released a BIOS update to mitigate this issue.


Affected products:

Intel® Desktop Board products:

DQ35JO, DQ35MP, DQ45CB, DQ45EK


Recommendations:
While Intel is not aware of any use of the vulnerabilities described
in this advisory, Intel has made changes to the BIOS of Intel® Desktop
Boards to mitigate this issue. It is highly recommended to apply these
updates to affected motherboards.

To determine if you need this BIOS update check the BIOS version string.
If the number is older than listed in the chart for your motherboard
below you need to apply the update.

1) During boot, enter the BIOS setup by pressing F2.
2) Check the Main menu.
3) The 4-digit number after the '86A' or '86I' is the current BIOS
version, as in this example: MQ96510H.86A.1663.2007.0319.1957
4) Press Escape to exit BIOS Setup

For the Intel products listed in the Affected Products table, Intel has
made available updated BIOS per the table below. The updated BIOS is
available at http://www.intel.com/p/en_US/support. On the 'Advanced Search'
line, enter the affected product name (for example DG33BU) and click Search
Support. Click on the found product, make sure you're under the support
tab and select BIOS updates. Next click on the BIOS title, then follow
the instructions on the download page for downloading and installing the
BIOS update. Several options are available. For detailed instructions on
updating your BIOS refer to
http://www.intel.com/support/motherboards/desktop/sb/CS-022312.htm.


Desktop Board
	
Fix included in this version or higher
DQ35JO
	
JOQ3510J.86A.1122.2009.1027.2020
DQ35MP
	
JOQ3510J.86A.1122.2009.1027.2020
DQ45CB
	
CBQ4510H.86A.0101.2009.0928.1248
DQ45EK
	
CBQ4510H.86A.0101.2009.0928.1248

Acknowledgements:
Intel would like to thank Alexander Tereshkin, Rafal Wojtczuk,
and Joanna Rutkowska from Invisible Things Lab,
http://invisiblethingslab.com, for working with us.


Revision history:

Revision 	Date 	Description
1.0 	30-October-2009  Initial Release

Disclaimer:

INFORMATION IN THIS DOCUMENT IS PROVIDED “AS IS” IN CONNECTION
WITH INTEL® PRODUCTS. YOUR USE OF THE INFORMATION IN THE DOCUMENT
OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. INTEL
RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.
EXCEPT AS PROVIDED IN INTEL’S TERMS AND CONDITIONS OF SALE FOR SUCH
PRODUCTS, INTEL ASSUMES NO LIABILITY WHATSOEVER, AND INTEL DISCLAIMS
ANY EXPRESS OR IMPLIED WARRANTY, RELATING TO SALE AND/OR USE OF INTEL
PRODUCTS INCLUDING LIABILITY OR WARRANTIES RELATING TO FITNESS FOR
A PARTICULAR PURPOSE, MERCHANTABILITY, OR INFRINGEMENT OF ANY PATENT,
COPYRIGHT OR OTHER INTELLECTUAL PROPERTY RIGHT. NO LICENSE, EXPRESS
OR IMPLIED, BY ESTOPPEL OR OTHERWISE, TO ANY INTELLECTUAL PROPERTY
RIGHTS IS GRANTED BY THIS DOCUMENT.

© 2006, Intel Corporation


======================================================================

          =========================================================
          Les serveurs de référence du CERT-Renater
          http://www.urec.fr/securite
          http://www.cru.fr/securite
          http://www.renater.fr
          =========================================================
          + CERT-RENATER          | tel : 01-53-94-20-44          +
          + 151 bd de l'Hopital   | fax : 01-53-94-20-41          +
          + 75013 Paris           | email: certsvp@renater.fr     +
          =========================================================