Unrated severityNVD Advisory· Published Dec 24, 2009· Updated Apr 23, 2026

CVE-2009-4419

Description

Intel Q35, GM45, PM45 Express, Q45, and Q43 Express chipsets in the SINIT Authenticated Code Module (ACM), which allows local users to bypass the Trusted Execution Technology protection mechanism and gain privileges by modifying the MCHBAR register to point to an attacker-controlled region, which prevents the SENTER instruction from properly applying VT-d protection while an MLE is being loaded.

Affected products

Intel/Gm45 Chipset
cpe:2.3:h:intel:gm45_chipset:*:*:*:*:*:*:*:*
Intel/Pm45 Express Chipset
cpe:2.3:h:intel:pm45_express_chipset:*:*:*:*:*:*:*:*
Intel/Q35 Chipset
cpe:2.3:h:intel:q35_chipset:*:*:*:*:*:*:*:*
Intel/Q43 Express Chipset
cpe:2.3:h:intel:q43_express_chipset:*:*:*:*:*:*:*:*
Intel/Q45 Chipset
cpe:2.3:h:intel:q45_chipset:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/37900nvdVendor Advisory
security-center.intel.com/advisory.aspxnvdVendor Advisory
www.vupen.com/english/advisories/2009/3618nvdVendor Advisory
invisiblethingslab.com/resources/misc09/Another%20TXT%20Attack.pdfnvd
osvdb.org/61248nvd
theinvisiblethings.blogspot.com/2009/12/another-txt-attack.htmlnvd
www.securityfocus.com/bid/37430nvd
www.securitytracker.com/idnvd
exchange.xforce.ibmcloud.com/vulnerabilities/54963nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000