Intel (Converged Security) Management Engine: Drivers, Firmware and Tools (2-15)

plutomaniac · May 11, 2017, 7:15pm

Intel ME 11.6 Corporate PCH-H Firmware v11.6.29.3287 (INTEL-SA-00075/CVE-2017-5689)

Intel ME 11.0 Corporate PCH-H Firmware v11.0.26.3000 (INTEL-SA-00075/CVE-2017-5689)

Intel ME System Tools v11.6 r11 (ReUp)
Intel ME System Tools v11.0 r4 (ReUp)

Updated the notice regarding INTEL-SA-00075/CVE-2017-5689 (found 11.6.29.3287 COR H from Dell & 11.0.26.3000 COR H from Dell):

atomota · May 11, 2017, 11:30pm

Considering there is no going back from that, I rather not risk breaking more shit, the chipsets are different enough not to risk that sort of thing, Im trying to fix something not break more.

plutomaniac · May 12, 2017, 12:34am

It is fully compatible, the FIT SKU has nothing to do with compatibility. Only the actual firmware SKU has.

123456 · May 12, 2017, 12:35am

@plutomaniac
I have HM77 Express Chipset on a DELL Laptop and i managed to update ME firmware to 8.1.65 in order to solve a problem of the yellow mark that appears on Intel Management Engine Interface in Windows 7 Device Manager along with Error Code 10 ( Device has failed to start ).
First, i used FWUpdate tool with the latest firmware image but it gave me this error :
Error 8193: Intel (R) ME Interface : Cannot locate ME device driver.
Then, i used fptw64 with -greset and i shutdown the laptop and powered it back on after 1 hour but nothing has changed and i still have that yellow mark in Device Manager and the same error code 10 because ME firmware is still corrupted.
I also tried to use fptw64 to dump the SPI.bin but i got error 26 so i would like to know how i can fix this error and upgrade the firmware to the latest version.
The strange thing is, the problem of the yellow mark and error code 10 gets fixed after a restart but the problem occurs again after a cold boot. Whats the reason behind this ?
Thanks in advance for the help.

plutomaniac · May 12, 2017, 12:40am

@ 123456:

No need to tag me, I monitor this thread regardless. Make sure you have the latest 11.0 driver from the first post and after a restart try updating the firmware again via FWUpdate. Otherwise try updating while in DOS or EFI environment.

123456 · May 12, 2017, 12:48am

Ok, I will install driver and try to update afterwards. BTW, could you tell me how to update while in DOS or EFI ? sorry to ask but i’m familiar only with Windows.

plutomaniac · May 12, 2017, 12:53am

Like this for DOS and you need to boot from the usb drive. Instructions on how to create bootable usb drives for DOS or EFI can be found online.

davidm71 · May 12, 2017, 1:00am

Is the 10.0.55.3000 compatible with consumer non-corporate type laptops? Didn’t see it listed on the consumer list on the first page of this thread…

Thanks

plutomaniac · May 12, 2017, 1:22am

Obviously if the firmware says 5MB then it is only for Corporate/5MB systems, not Consumer/1.5MB.

caleb59 · May 12, 2017, 2:20pm

Edit by pluto: edited by accident, the answer is no

jjurkus · May 12, 2017, 2:55pm

The 9.5 firmware is available from here: https://support.hp.com/us-en/drivers/sel…book-pc/7262971
(windows + w10 64-bit, under the firmware category)

ME Analyser says this:
File: ME9.5_5M_Production.bin

Family: ME
Version: 9.5.61.3012
Release: Production
Type: Region, Stock
SKU: 5MB
VCN: 11
PV: Yes
Date: 07/04/2017
Size: 0x702000
Platform: LynxPoint LP
Latest: Yes

ftp://ftp.hp.com/pub/softpaq/sp80001-80500/sp80104.exe

And this is the firmware update for ME6, and ME Analyser says this:
File: PCH_8M_DT_UPD_Production.bin

Family: ME
Version: 6.2.61.3535
Release: Production
Type: Update
SKU: 5MB DT
Date: 09/04/2017
Platform: Desktop
Latest: Yes

atomota · May 12, 2017, 3:18pm

It is fully compatible, the FIT SKU has nothing to do with compatibility. Only the actual firmware SKU has.

Are you sure about this, (dont take it personally I need to be sure beyond any doubt) if that is not right, there is no way back from that(except hw programmers and thats not possible). But if your 100% positive then Ill trust your word for it.

The other question is, flashing a ME FW doesn’t seem to reset the recovery state, as last flash did nothing to correct my issue.

plutomaniac · May 12, 2017, 4:44pm

Intel ME 11.6 Corporate PCH-LP Firmware v11.6.29.3287 (INTEL-SA-00075/CVE-2017-5689)

Intel ME 9.5 5MB Firmware v9.5.61.3012 (INTEL-SA-00075/CVE-2017-5689)

Intel ME 6 Desktop 5MB Firmware v6.2.61.3535 (INTEL-SA-00075/CVE-2017-5689)

Intel ME System Tools v10.0 r2
Intel ME System Tools v9.5 r2

Updated the notice regarding INTEL-SA-00075/CVE-2017-5689 (found 11.6.29.3287 COR LP from Dell & 9.5.61.3012 5MB from HP & 6.2.61.3535 5MB DT from HP):

stefguer · May 12, 2017, 4:51pm

Where do you get ME Analyzer v1.11.2_x with Database r86_x please ? Thanks!

plutomaniac · May 12, 2017, 8:34pm

Intel ME 11.6 Consumer PCH-LP Firmware v11.6.29.3287

Intel ME 6 Mobile 5MB Firmware v6.2.61.3535 (INTEL-SA-00075/CVE-2017-5689)

Updated the notice regarding INTEL-SA-00075/CVE-2017-5689 (found 6.2.61.3535 5MB MB from HP):

@ stefguer:

The "_x" at the end means that these are still in development versions, not yet released. The next versions will be released tomorrow or the day after. Thank you for your interest in MEA.

atomota · May 12, 2017, 9:24pm

There you say the PCH-H Firmware v11.6.29.3287 was found, but only the LP is up?

plutomaniac · May 13, 2017, 1:02am

You’re comparing apples and oranges. Read the text under the firmware table.

atomota · May 13, 2017, 8:58am

I wasnt aware I was comparing anything, I asked about this: See screenshot attached.

Pacman · May 13, 2017, 9:22am

atomota

That is the Corporate PCH-H, and it is in the first post.

stefguer · May 13, 2017, 1:00pm

Previous ME vulnerable

11.6.25.1229_COR_LP_C0_UPDM2_PRD_EXTR.png

New ME not vulnerable

11.6.29.3287_COR_LP_C0_UPDM_PRD_RGN.png

Thanks for the files