>I found very interesting 0day vulnerability (looks rather like backdoor) in ThinnkPads, arbitrary SMM code execution
>X220 is the oldest one that I have checked, firmware ver 1.42 has the same vulnerable code
>It also leads to flash write protection bypass, SecureBoot bypass, Windows VSM bypass and other bad things. Details soon :)
Sup Forums status:
[X] FUCKING REKKT
No link to a source? Get out.
SOURCE
>We're in
Fucking bullshit
Being able to flash shit from an EFI shell isn't a big deal.
Basically the equivalent of rooting a phone.
FREETARDS BTFO
Actually if it let you flash this would let you do shit like remove the whitelist for mpcie.
get your patches here
support.lenovo.com
based Penryn series unaffected
But free software would remove this problem
This is a problem in proprietary software
You're blaming a car crash on a horse
Holy shit you're retarded.
Oh, gay so you can't modify the firmware or it won't boot.
>T420 and X220 affected
>T520 and W520 unaffected
manlets on suicide watch
>I don't know what is happening
>but I'll shitpost about it anyway!
why is Sup Forums full of idiots
explain this too me as if I'm a retard
Holy shit freetard damage controll is really fast.
>d-damage c-control
>if I post enough frogs I can obfuscate my stupidity
Just read a book nigger
thinkpad laptops can be hacked no matter what operating system or antivirus you have, and it looks like it's intentional
Sup Forums's favorite Thinkpad models are fucked. If you aren't a pleb, it's not an issue.
is it only if they have physical access or can it be done from anywhere
>my r400 isn't affected
Feels good.
He doesn't know
Manlets, when will they ever learn ?
You need to have physical access to the computer to use EFI shell and it lets you brick the computer or read ram, it isn't useful.
>chink-shit
NOT·····
O·······
T·EVEN··
··V·····
··E·ONCE
··N·N···
····C···
····E···
Wow it's fucking nothing
You can do it via Windows actually.
Am I retarded or is this windows only
Quality post
> tfw you got a libreboot x200
>Using anything later than T60
You goyim asked for this
this is old as fuck
I remember reading about this a year ago on reddit
>he buys lenovo thinkpads
LMFAO thinkpad has been shit tier ever since IBM sold it. fucking fag/g/ots
>he fell for the thinkpad meme
the point is that it's probably a backdoor that was created at the FBI's request so they don't need a subpoena to get your password
Hacking without a warrant or approval is illegal.
>t410 not affected
"vulnerability" discarded.
...
>He fell for the meme meme
The government is above the law
Evidence would be discarded if the FBI was forced to reveal their methods of accessing said evidence.
captcha: morl impasse
That
Lenovo was caught loading bloatware into the UEFI so it would persist even after formatting and reinstalling windows and they had one piece of bloatware that actually made your internet connection susceptible to being MITM'd.
Shady company
>SMM
>ring -1
>IntelME
>ring -3
With Intel, you don't own your computer. Someone else does, whenever they want.
>Sup Forums has been recommending LITERAL BOTNET for the past year
>funded by NASA shit posters to infiltrate Sup Forums users
My Thinkpad doesn't even have UEFI.
ha Sup Forums utterly btfo
Confirmed: You are a retard.
All hardware has "backdoors".
Sick facebook meme
Have another
>You need to have physical access
Oh wow it's fucking nothign
You're fucked if someone have access to your computer anyways, encrypted or not since they can fucking drug you and beat the password out of you with a baseball bat
>w510 not affected
based 510
ThinkPads aren't free dumbass. It's a uefi exploit for a specific set of hardware.
>Execute arbitrary code
>Bypass Secure Boot
>Denial of Service
>Escalation of Privilege
>Severity: Medium
HOLY MOTHER OF KEK
I saw this as well. Hearty laugh.
This confirms what dem niggaz been talking for quite a while already. Good job.
Medium :-D
Probably because it's not remotely executable
>NASA shitposters
If NASA can convince people the Earth is round then they can convince people to buy a thinkpad
>laptop from a chinese spying corporation is vulnerable
YOU DON'T FUCKING SAY
Y410P/510P (IdeaPad)Not Affected
So a typical day for chinkpad owners.
Holy shit I want this to happen.
Literally retarded.
See
The patch is only available for Windows users.
If you weren't using windows how would you solve this?
see
You spend 10 mins and download XP iso files
>Use the link below to obtain the BIOS in other file formats:
> BIOS Bootable CD
Implying anyone can say something once you've been hit with a baseball bat
Looks like the X201 isn't on there... I dodged a bullet by having an inferior model! Whooo hooo
Doesn't matter since most of you're neckbeard anyway
You'd spit out your password asap when someone hold a baseball bat and threatening you
And remember, if they have access to your laptop physically then they know who you're.
You're fucked no matter what.
This. If someone has physical access it's all ogre and that's always been true.
>he's a flat earther
How retarded can you get?
What about plausible deniability? You kan keep a truecrypt drive with a decoy OS.
Plot twist: You're the retard.
How do you not see the fucking sarcasm. Jesus christ.
>he's autistic enough to fall for my bait
How retarded can you get?
>"Oh shit, someone called me a retard on the internet for making retarded statements!"
>"LOL IT WAS SARCASM BRO I'M ONLY PRETENDING TO BE RETARDED YOU'RE THE RETARD"
This.
Also this.
m8o you are easily baited
to minimise further butthurt, lurk moar
You must be 18 or older to post on Sup Forums.
this
>that superfish or whatever the fuck man in the middle thing before
>now this
Won't be buying Lenovo, no way.
It was obvious bait
Not detecting a joke is a sign of autism
This
been here since 07, I've done lots of lurking.
>"He knows I wasn't pretending to be retarded in my first post."
>"I got it! HAHAHAH YOU'RE UNDER 18 GET B&"
Why do retards resort to childish tactics like this?
Also, stop samefagging.
you got baited and you are now in full damage control, you autist, you are making this worse
lurk moar
unless this is some meta bait, in which case 6/10, mildly annoyed
>there is no way multiple people think I am retarded
whatever preserves your ego bud
Old news is old.
>Sup Forums status: Told
The only people on Sup Forums pushing Thinkpads are PLA shills who want to push stupid Westerners to buy their spyware.
Not in ThinkPads. Read more carefully.
The only spyware you could get is Computrace or Intel AT, if it was enabled.
Stopping being a hipster.
>post search results
No mentions of "Thinkpad" on the results
nice photoshop, faggot
FreeDos? I've used it before to flash my BIOS. Couldn't stop sweating the whole time, but it worked fine.
>UEFI
>not using libre boot
>not using libre hardware
TOP KEK
Are you just counterbaiting me now?
I would just inspect element if I wanted to edit, but I am not samefagging
>still thinks libre hardware really exists
HAHAHAHAHAHA
>using so old shit that it can't run a lightweight website
Kek
Interesting..
I wonder if I can test this easily on my Libreboot Thinkpad to see how it works?
