Access member only content, take part in discussions with comments on blogs, news and reviews and receive all the latest security industry news directly to your inbox. Join now for free.
A confirmation email has been sent to your email address - SUPPLIED EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @scmagazine.com.au to your white-listed senders.
Researchers at Invisible Things Lab have released information on a security exploit that could compromise PCs that run on Intel processors.In a paper describing the exploit, Invisible's Joanna Rutkowska and Rafal Wojtczuk claimed that the attack, involving cache poisoning in a CPU operation mode called System Management Mode (SMM), was the third their team had found affecting Intel-based systems within the last 10 months.“It seems that current state of firmware security, even in cases of such reputable vendors as Intel, is quite unsatisfying,” they wrote in the paper. An attack based on the Intel exploit could poison a chip's cache memory, which would enable forced access to SMM, the most privileged CPU mode on x86 architectures. Even operating systems cannot access SSM, which handles certain errors, power management and other features. According to Rutkowska and Wojtczuk, exploitation of the CPU cache could mean dumping the contents of RAM used for SSM, or enabling arbitrary code execution in that memory.The potential consequence of attacks on SMM might include SMM rootkits, hypervisor compromises, or OS kernel protection bypassing, they said.Intel has been working on a solution to prevent caching attacks on SMM memory, and a spokesperson has said that many new systems are protected against the exploit. But, writing in their paper, Rutkowska and Wojtczuk said: “Some of Intel's recent motherboards, like the popular DQ35, are still vulnerable to the attack. Additionally, the workarounds that Intel has mentioned to us are not yet officially documented.”See original article on scmagazineus.com