Synopsis
Like most BIOSes, Intel's firmware PE94510M.86A.0050.2007.0710.1559 (07/10/2007) can be used to ask a password to users at boot time to implement a pre-boot authentication.
The password checking routine of this firmware fails to sanitize the BIOS keyboard buffer after reading user input, resulting in plain text password leakage to local users.
Read full Technicl Whitepaper. Here
No comments:
Post a Comment