Official GIGABYTE Forum

ThinkPwn UEFI Exploit?

Tgreen

  • 1
  • 0
ThinkPwn UEFI Exploit?
« on: October 31, 2016, 01:31:00 pm »
https://threatpost.com/scope-of-thinkpwn-uefi-zero-day-expands/

Quote
A serious hardware vulnerability, thought to be confined to UEFI drivers in Lenovo and HP laptops, has also been found in firmware running on motherboards sold by Gigabyte.

Gigabyte motherboards (Z68-UD3H, Z77X-UD5H, Z87MX-D3H, Z97-D3H and many others) were also carrying the vulnerable SMM code.

Is Gigabyte ever going to fix this?

shadowsports

  • 2259
  • 67
  • Xbox One, Drives STI, Use QVL RAM For Best Results
    • Gigabyte US
Re: ThinkPwn UEFI Exploit?
« Reply #1 on: November 02, 2016, 12:13:55 am »
Chances of being affected by this is extremely low (as in zero probability)...  as per the last few lines in the article you referenced.

"It’s very unlikely that this vulnerability will be exploited in the wild, for regular customers there are much more chances to be killed with the lightning strike than meet any System Management Mode exploit or malware.”

Z390 AORUS PRO (F10) \850w, 9900K, 32GB GSkill TriZ RGB - 16-18-18-38, RTX 3080Ti FTW3 Ultra, 960 Pro_m.2, W11
Z370-HD3P (F5) \750w, 8350K, 8GB LPX 3200 - 16-18-18-38, GTX 970 FTW SC, Intel SSD, 2TB RAID1, W11
Z97X-UD5H \850w, 4790K, 32GB Vengeance, RTX 2080 FTW