Intel CPU Privilege Escalation Exploit

Intel CPU Privilege Escalation Exploit 242

Posted by timothy on Thursday March 19, 2009 @01:18PM from the they-never-offer-the-purple-pill dept.

Eukariote writes "A paper and exploit code detailing a privilege escalation attack on Intel CPUs has just been published. The vulnerability, uncovered by security researchers Joanna Rutkowska (of Blue Pill fame), Rafal Wojtczuk, and, independently, Loic Duflot, makes use of Intel's System Management Mode (SMM). Quote: "The attack allows for privilege escalation from Ring 0 to the SMM on many recent motherboards with Intel CPUs. Rafal implemented a working exploit with code execution in SMM." The implications of this exploit are severe."

Intel CPU Privilege Escalation Exploit

This discussion has been archived. No new comments can be posted.

Search 242 Comments Log In/Create an Account

Comments Filter:

Ouch (Score:5, Funny)

by Big Hairy Ian ( 1155547 ) writes: on Thursday March 19, 2009 @01:22PM (#27258245)

This could make the apple bricking patch look like a kindergarten party

CD Boot (Score:5, Funny)

by Baldrson ( 78598 ) * writes: on Thursday March 19, 2009 @01:23PM (#27258277) Homepage Journal

TFA: The malware code takes over a PC with little or no recourse to remove it.
Haven't these guys ever booted from a CD?

But more importantly... (Score:5, Funny)

by Anonymous Coward writes: on Thursday March 19, 2009 @01:25PM (#27258301)

... Joanna Rutkowska is hot [zdnet.com]!

Easy workaround (Score:5, Funny)

by Anonymous Coward writes: on Thursday March 19, 2009 @01:25PM (#27258305)

Run all code on a 286 or below.

Re:CD Boot (Score:5, Funny)

by CannonballHead ( 842625 ) writes: on Thursday March 19, 2009 @01:31PM (#27258403)

No, really. It takes it over! You can't even come within 5 feet of the case, the malware pushes you back!

Re:But more importantly... (Score:2, Funny)

by Ginger Unicorn ( 952287 ) writes: on Thursday March 19, 2009 @01:37PM (#27258483)

are you kidding? she looks like Q [tripod.com] ;)

Let's go retro (Score:2, Funny)

by AlteredEgg ( 849856 ) writes: on Thursday March 19, 2009 @01:48PM (#27258691)

Wonder if this will spawn a run on Mac G5's.

Re:But more importantly... (Score:5, Funny)

by Anonymous Coward writes: on Thursday March 19, 2009 @01:51PM (#27258743)

This [amazonaws.com] is an even better picture. But it's not Joanna.

Re:Easy workaround (Score:3, Funny)

by teknopurge ( 199509 ) writes: on Thursday March 19, 2009 @01:58PM (#27258871) Homepage

Your lulz make my Sparcstation weep....

Re:Apple (Score:2, Funny)

by Anonymous Coward writes: on Thursday March 19, 2009 @02:13PM (#27259105)

Does this mean Apples are vulnerable?
No. Macs are imperious to rootkits. Now check out this super cool beta version of Safari [tinyurl.com]:

Re:Ouch (Score:5, Funny)

by Knara ( 9377 ) writes: on Thursday March 19, 2009 @02:15PM (#27259151)

A kindergarten party?

Re:CD Boot (Score:2, Funny)

by l3ert ( 231568 ) writes: on Thursday March 19, 2009 @02:15PM (#27259153)

I'll reserve my judgement on this until I read more from someone that owns a clue.
I assume you meant "powns a clue".

Re:Ring of Fire (Score:3, Funny)

by geckipede ( 1261408 ) writes: on Thursday March 19, 2009 @02:20PM (#27259215)

if you're on vulnerable hardware, once some malware that uses this trick has gained root, nothing short of physically setting fire to the motherboard will clean it. Reinstalling from scratch can't help you.

Re:Ring of Fire (Score:1, Funny)

by Barsteward ( 969998 ) writes: on Thursday March 19, 2009 @02:24PM (#27259285)

"If you are running in ring zero..."

No-one is going to running in my ring 0 unless they pay a million or two

Re:Ouch (Score:5, Funny)

by machine321 ( 458769 ) writes: on Thursday March 19, 2009 @02:35PM (#27259431)

I was on the apple bricking patch for a while, it really helped me quit apple bricking.

Re:But more importantly... (Score:2, Funny)

by Anonymous Coward writes: on Thursday March 19, 2009 @02:40PM (#27259505)

Ahem.
http://xkcd.com/322/

Re:Inexcusable (Score:3, Funny)

by anss123 ( 985305 ) writes: on Thursday March 19, 2009 @03:09PM (#27259945)

Hard real time is a world in which stuff is expected to actually work every time.
So instead of "real time kernel" it should be called "every time kernel" :-)

Re:Bring back burning at the stake! (Score:4, Funny)

by ijakings ( 982830 ) writes: on Thursday March 19, 2009 @04:34PM (#27261171)

I for one would like to welcome our new flaming devil overlords

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Intel CPU Privilege Escalation Exploit 242

Intel CPU Privilege Escalation Exploit More Login

Intel CPU Privilege Escalation Exploit

Ouch (Score:5, Funny)

CD Boot (Score:5, Funny)

But more importantly... (Score:5, Funny)

Easy workaround (Score:5, Funny)

Re:CD Boot (Score:5, Funny)

Re:But more importantly... (Score:2, Funny)

Let's go retro (Score:2, Funny)

Re:But more importantly... (Score:5, Funny)

Re:Easy workaround (Score:3, Funny)

Re:Apple (Score:2, Funny)

Re:Ouch (Score:5, Funny)

Re:CD Boot (Score:2, Funny)

Re:Ring of Fire (Score:3, Funny)

Re:Ring of Fire (Score:1, Funny)

Re:Ouch (Score:5, Funny)

Re:But more importantly... (Score:2, Funny)

Re:Inexcusable (Score:3, Funny)

Re:Bring back burning at the stake! (Score:4, Funny)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot