back to article Intel's Software Guard caught asleep at its post: Patch out now for SGX give-me-admin hole

While admins were busy wrangling with the mass of security patches from Microsoft, Adobe, and SAP last week, Intel slipped out a fix for a potentially serious flaw in its Software Guard Extensions (SGX) technology. Chipzilla's January 8 update addresses CVE-2018-18098, an issue Intel describes as an "improper file verification …

  1. EveryTime Silver badge

    Was I supposed to learn something from watching that video? I expected it supplement the story. Instead it was just someone running a batch file named "exploit.bat".

  2. Down in the weeds

    So disappointing

    When I first learned of Intel hardware support for application level 'enclaves' I was hopeful. Yet again the implementation is a mixture of hardware and software and the latter component is frail.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019