So it seems that the flaw can’t plausibly be exploited by a remote or adjacent attacker or software. So what’s the impact here? Warez scene wreaking havoc with lossless WEB-DLs?
A ton of warez groups (even a lot of P2P ones) already have a Widewine exploit that works for >=1080p anyway, some groups (BLUTONiUM, PETRiFiED ++) even have a 2160p exploit.
It's actually quite amazing that the 1080p exploit hasn't leaked and been patched yet, considering how widespread it is.
<=1080p content is typically only protected by code obfuscation. There aren't usually any "exploits", merely a moderately skilled reverse engineering effort - as such, nothing can be patched any time soon.
if intel can manage your machine state remotely [they can with ME] then someone else can as well.
corporate customers often have an elevated relationship that retail consumers dont have. There is a different level of trust. I dont trust Intel. I didnt ask for ME and i treat any hardware with ME as an edge device.
as far as impact is concerned its possible that clone machines could be manufactured with hardware modifications.
how possible depends on how much money someone has to throw at the project.
exploit chips could become a common offering all you need is a steady hand and a solder iron, and a blob of epoxy for good measure if you want to hide the job.
if as a highminded attacker you determine the hardware key, as it stands you can then decode a software key and begin manipulating firmware. The concern being that the same hardware key is used accross all ME chipsets.
