Researcher Exploits 18-Year-Old Design Flaw To Compromise X86 Chips

jfruh writes: Security researcher Christopher Domas has demonstrated a method of installing a rootkit in a PC's firmware that exploits a feature built into every x86 chip manufactured since 1997. The rootkit infects the processor's System Management Mode, and could be used to wipe the UEFI or even to re-infect the OS after a clean install. Protection features like Secure Boot wouldnt help, because they too rely on the SMM to be secure.

Right

Design flaw my ass. I bet it was there deliberately and everybody knows who originally requested it. I just love the good ol US of A.

Re:Right

[beschra]

everybody knows who originally requested it.

Bush? Obama?

Re:Right

Bushama, the man who dares where no man has dared before.

Re:Right

Obama is Bush - he is just wearing a mask

Re:Right

[t8z5h3]

AMD really it was about tightening up communication's between the C.P.U. and ram by having the Memory controller on die (L2 Cache level of the 2nd core of the am2 athlon x2 processor but it must have been there before that because of the single core processors before dull core became a thing.) so it could effect amd computers back to 2005 ish. does that even sound right?

Re:Right

[Speck'sBacon]

Or maybe Bush was the mask. Did you consider that?

Re:Right

We're through the looking glass here people!

Re:Right

Hmm 18 years. That would be Clinton. But then math was never my strong point I am a republican after all.

Re:Right

everybody knows who originally requested it.

Bush? Obama?

Clinton was President from 1993 to 2001. It might have been her husband.

Re:Right

> so it could effect amd computers back to 2005 ish. does that even sound right?
No, you misspelled affect

Re: Right

Bush was a mask, but it wasn't Obama wearing the Bush mask, it was Dick Cheney.

Re:Right

[daremonai]

... but it must have been there before that because of the single core processors before dull core became a thing.

Why would you even bother to infect dull core processors? It's not like you could do anything interesting with them.

Re:Right

[Adriax]

Boring is where work gets done.

Re:Right

1997 would have been during Bubba's 2nd term...

Re: Right

Lrrr, reptilian Emperor of Omicron Persei 8

Re: Right

[LaurenCates]

And he would have gotten away with it too, if not for...oh, wait.

Re:Right

[U2xhc2hkb3QgU3Vja3M]

It's still better than duel core processors. I hate it when the cores fight amongst themselves.

Re:Right

In reality, they're all Ronny Raygun, remember he is an actor!

Re:Right

Clinton Historical quote
"This Monica thing sucks"

good luck explaining it to your grand sons

Re:Right

Heh. One of my favorite jokes: "The most racist thing George W Bush ever did was put on black face for his third and fourth terms."

Re:Right

[michelcolman]

In that case it did sound right, didn't it?

Re:Right

[doccus]

everybody knows who originally requested it.

Bush? Obama?

Hardly.. It would be somebody with real power in the administration...

Re:Right

[doccus]

everybody knows who originally requested it.

Bush? Obama?

Actually, I *think* he was referring to Reagan...

Re:Right

[arglebargle_xiv]

SMM, a.k.a. Ring -1, has been present for a long time, and does what the name says, it allows for things like emergency power-shutdown handling ("you have 50ms to sync system state before we can't guarantee power quality any more"). Yes, it's Ring -1, and you have to be careful how you misuse it, but the fact that it works as documented is hardly a new security flaw, this was documented as a security concern at least 15 years ago.

Re:Right

[arglebargle_xiv]

Just read the WP, it points out an ancient APIC compatibility hack that allows you to escalate from Ring 0 to Ring -1 (SMM). So in other words if you're already running at Ring 0 to start with, you can get into SMM. Sounds like an example of what Raymond Chen calls an "other side of the airtight hatchway" attack, you already have to have complete system privs in order to carry out a privileged attack.

HA!

[ArchieBunker]

I use Alpha 21264 you insensitive clod!

Re:HA!

Doesn't matter. Any processor from Intel after 2011 no longer has the flaw...

Old bug; Intel knew about it in 2010; they fixed in 2011, now its on the frontpage of Slashdot in 2015..

Re:HA!

[DerekLyons]

Slashdot has been quicker to get the news out of late...

Re:HA!

In their defense: the publication of the exploit only happened recently. Slashdot isn't really to blame this time.

Re:HA!

[U2xhc2hkb3QgU3Vja3M]

The good news is that we'll hear about this again in one week, then once more in 2018.

Re:HA!

[FrankDrebin]

Yeah, it's getting to the point where the dupes are coming out before the original.

Re:HA!

[Enter+the+Shoggoth]

Doesn't matter. Any processor from Intel after 2011 no longer has the flaw...

Old bug; Intel knew about it in 2010; they fixed in 2011, now its on the frontpage of Slashdot in 2015..

Why is this modded 5 Informative? AC provides no evidence and in fact what AC says is completely untrue. All x86 processors are vulnerable to this kind of attack.

Re:HA!

[HornWumpus]

MB manufacturers use SMM to hide the fact they are doing all the work in the CPU.

e.g. the time the CPU spends twiddling bits running the ethernet port doesn't show up on your diagnostic tools.

Re: HA!

No longer has the flaw in a really accessible now public fashion

The last X86 branded chip was 486.

I think I am safe, my laptop has a core i thingy inside.

Re:The last X86 branded chip was 486.

Go back to playing your video slots, grandpa.

Re:The last X86 branded chip was 486.

[toddestan]

As Intel goes, maybe. The last x86 branded chips I can think of would be the Cyrix 6x86MX chips. Which I had to guess aren't susceptible to this attack.

Was already known possible

http://www.infoworld.com/article/2653209/security/hackers-find-a-new-place-to-hide-rootkits.html

We already knew this kind of thing was possible, so I guess this is just the first practical implementation? The article is short on details.

HA HA !

SSB1c2UgYSA2NCBiYXNlIHByb2Nlc3NvciwgeW91IGluc2Vuc2l0aXZlIGNsb2QgIQ==

Re:HA HA !

[Junta]

SSBkb24ndCBnZXQgaXQ=

The real story...

I think the real story here is that 1997 was 18 years ago...

Was SMM ever really needed?

My understanding is that SMM is used, before all the TCG stuff about Secure Boot, etc., basically to control fans and shut down the system if the temperature is too high. And also to make USB keyboards appear as PS/2 hardware to DOS.

Are those functions really so expensive that they couldn't be offloaded to hardware on a chipset instead of trying to have the main CPU in your system act like it's own hardware watchdog?

Re:Was SMM ever really needed?

[ledow]

Er... you just re-invented SMM.

To act as a mouse visible to DOS, it has to interact with the system interrupt tables. Remember the TSR days of old? You're putting stuff into main memory to have it executed whenever a certain interrupt happens. Which memory? Well, you need at least the USB Host Controller areas, plus something in low memory if you want it available to the BIOS.

Controlling fans, monitoring temperature, issuing safe shutdown commands etc.? Again all happens by talking to the main processor. This is exactly what the SMM was designed for, does, is doing, and needs in order to do that.

Sure, there's a bug that needs to be patched, but what you're suggesting is EXACTLY what the SMM is supposed to be doing already.

Re: Was SMM ever really needed?

[John+Allsup]

But a simple core (think of an embedded Arm core) could do all this, using in chip Ram, and hardly bothering the main Cpu. Why does Smm code even need the main Cpu to run?

Re: Was SMM ever really needed?

[0123456]

But a simple core (think of an embedded Arm core) could do all this, using in chip Ram, and hardly bothering the main Cpu. Why does Smm code even need the main Cpu to run?

'Cause it saves $0.25 per system shipped?

Re: Was SMM ever really needed?

[ledow]

Because that core would STILL NEED to interface with main memory just the same. It would still need to access the same hardware as the main processor does. It would still need to operate at the level it requires to do those operations such that they are visible to the main processor - and that's what SMM does!

All you've done is replace an in-die kind of SMM with an external chip that needs more complicated routing, all kinds of interactions with main memory (at DMA speed, no less) and peripheral buses, etc. etc. etc. You've not solved the security problem, but you've added a shed-load of costs and external hardware problems that didn't exist before!

Re:Was SMM ever really needed?

[Trax3001BBS]

My understanding is that SMM is used, before all the TCG stuff about Secure Boot, etc., basically to control fans and shut down the system if the temperature is too high. And also to make USB keyboards appear as PS/2 hardware to DOS.

Intel uses the chip of the keyboard to fix an issue with memory managment, don't want to mess with the keyboards.

Re:Was SMM ever really needed?

[Trax3001BBS]

My understanding is that SMM is used, before all the TCG stuff about Secure Boot, etc., basically to control fans and shut down the system if the temperature is too high. And also to make USB keyboards appear as PS/2 hardware to DOS.

Intel uses the chip of the keyboard to fix an issue with memory managment, don't want to mess with the keyboards.

Just read what was posted and the reply, it's more so important in a DOS environment as it's a gap in the first meg of accessible memory that's the issue.

Re: Was SMM ever really needed?

Exactly, you can't just throw an external arm into the noisy bus of a multi core x86... that would lead to all sorts of race conditions and other resource sharing issues...
ALSO
take note that a dedicated processor like that would be a similar environment to the already suspected backdoorland inside of your cellular radio chip.

It's a feature!

How does one exploit a feature?

Re:It's a feature!

[hyperar]

Hahaha, feature/bug, depends on which side you're on-

Details

The article is very vague.

They remap the LAPIC to overlap the SMM memory region which makes data loads of the SMM code fetch values from the LAPIC registers instead of from memory.
Here you can find the slides and the whitepaper of the Black Hat conference talk.

It's a feature

System Management Mode is a feature. It's meant to render separate processors unnecessary for tasks like temperature management and system specific keyboard shortcuts. These functions need to work even if an unsupported or no operating system is running. Consequently SMM behaves almost like a separate processor. That's not a flaw, that's necessarily so.

The problem isn't SMM per se. It's that there is no way to be sure what code is executing in SMM, because there is no way to guarantee which firmware the system is running. Basic firmware should be in ROM (not flash. Read Only Memory.) And it should only do one thing: Load the actual firmware from a removable medium, like a micro SD card. With all writable storage in the system accessible to external inspection, there would at least be a chance to find and reliably remove infections.

Re:It's a feature

[tlhIngan]

System Management Mode is a feature. It's meant to render separate processors unnecessary for tasks like temperature management and system specific keyboard shortcuts. These functions need to work even if an unsupported or no operating system is running. Consequently SMM behaves almost like a separate processor. That's not a flaw, that's necessarily so.

Well, the purpose of SMM mode is way back in ancient history, when PCs used DOS.

Back then "Power Management" was actually done by the system firmware - it took until 95 or so for Microsoft to reinvent power management and make it an OS responsibility instead of a system firmware responsibility.

So if you were using DOS or Windows (on top of DOS), and you shut the lid, the BIOS basically needed to do what it needs to do to put the machine to sleep. But you don't know what state the system is in - remember the BIOS is 16-bit code, and the system could very well be in 32-bit mode. SMM mode meant that you didn't care - the processor state was switched to a private state in SMM mode so you can do your thing without worrying about such details and put the laptop to sleep.

More modern uses include it being used to emulate in software certain hardware - some embedded processors use ti to make the chip more compatible with known hardware (e.g., instead of providing esoteric drivers, you can use SMM mode to emulate say, a SoundBlaster sound card).

Re:It's a feature

[Darinbob]

It's all part of the bizarre non-design of the PC. The bootloader was always given far too much responsibility, compare to real computers that actual designers and you never see a boot system so bloated as the PC. There should never be a "need to work even if an unsupported or no operating system is running" feature.

It reemphasizes the overreliance on a monoculture that we have.

At last

[dfn5]

A reason to back to Sparc

If you're f*cked you're more than f*cked

[Artem+S.+Tashkinov]

"To exploit the vulnerability and install the rootkit, attackers would need to already have kernel or system privileges on a computer."

You know, even without this particular SMM attack vendor, a hacker who already has system level privileges on your PC renders your PC totally insecure, besides he also can ... rewrite BIOS or various firmware components of your PC to allow his code to survive an HDD wipe.

Re: If you're f*cked you're more than f*cked

Wonder if this can be exploited on AWS machines... How can you trust the guy you rent hardware to, or who has rented the hardware before you...

Re: If you're f*cked you're more than f*cked

[ericloewe]

I'm fairly certain that AWS runs on VMs that get shuffled around. That's a whole new layer that probably prevents this kind of exploit unless you target a highly specific and insecure implementation.

Secure boot?

Does UEFI Secure boot protect against this?

BIOS/UEFI protection

[edtice1559]

The article is (as expected) light on details since this is newly disclosed. I've had machines where the BIOS would require confirmation from a connected PS/2 keyboard before certain changes were written. Added a need for physical access in order to write anything to SMM. All the terms have changed but it seems the same principle here. If I can update the firmware, I can keep a machine compromised forever.

Stuff

[puddingebola]

Why is all the stuff broke? Why does all the stuff have holes in it? Why isn't there any stuff that isn't broke? ARM processors from now on. All this stuff is broke.

Re:Stuff

[Chris+Mattern]

Why is all the stuff broke? Why does all the stuff have holes in it? Why isn't there any stuff that isn't broke?

Because it's too complicated. There are too many possible failure modes and many of them can't be seen without a large effort to see them. About the only thing that might eliminate the holes is formal proofs, but that requires not only a complete revamp of how we code but makes coding itself immensely more difficult.

ARM processors from now on. All this stuff is broke.

ARM processors are just as broke as everything else. There's just fewer people looking to uncover the holes.

Re:Stuff

[topology]

Why is all the stuff broke? Why does all the stuff have holes in it? Why isn't there any stuff that isn't broke? ARM processors from now on. All this stuff is broke.

To a computer there is no difference between "good instructions" and "bad instructions". Any ability to update or improve existing code is also a vector for getting infected by malicious code. You can either allow updates and risk infection, or you can hard code the firmware and disallow updates, but then you're stuck with whatever the firmware is at the outset.

It's not broke. It's just upgradable. Unless you have solid protocols to control who can upgrade and what upgrades are applied, you are at risk of getting a malicious "upgrade". Even with good protocols, an attacker can mimic the appearance of an authorized upgrader and fake the certification of the upgrade to get a malicious payload installed.

Nature is riddled with this kind of phenomenon. Undesirable mate X tries to present itself as desirable mate Y to inject its dna into the replicator.

Re:Stuff

[YoopDaDum]

ARM processors from now on. All this stuff is broke.

ARM processors are just as broke as everything else. There's just fewer people looking to uncover the holes.

Fewer yes, but some are looking.
The bug in SnapDragon TrustZone implementation described in the previous link has been fixed BTW. Now what percentage of SnapDragon based smartphones in the field include the fix is anyone guess.

Re:Stuff

[PPH]

Nature is riddled with this kind of phenomenon. Undesirable mate X tries to present itself as desirable mate Y to inject its dna into the replicator.

So you had to make an analogy that, for Slashdotters, is a purely theoretical event.

Re:Stuff

[radarskiy]

Formal proofs were used to justify the change in the floating point unit that led to the Pentium FDIV bug.

Re:Stuff

Nature is riddled with this kind of phenomenon. Undesirable mate X tries to present itself as desirable mate Y to inject its dna into the replicator.

So you had to make an analogy that, for Slashdotters, is a purely theoretical event.

we've all theoretically fucked your mother. in theory.

Re:Stuff

[spire3661]

"ARM processors from now on" BWAHAHAHAHAHAHAHA. Good one. ARM is a joke compared to Intel. No company spends more on chip research and design than intel. Further ARM is supported by a ton of REALLY REALLY insecure operating systems. iOS and Android are both far more leaky by default than this exploit.

Re:Stuff

[Chris+Mattern]

Really? All the articles I see say that the problem was a faulty lookup table. No one says the lookup table was subjected to a formal proof of correctness.

Re:Stuff

[lgw]

About the only thing that might eliminate the holes is formal proofs

Formal proofs (of correctness, I assume) can't eliminate bugs or security flaws, though they are a cost-inefficient way to reduce bugs. A formal proof is only solving the same problem in two different languages (one the language of the formal proof), and diffing the result. It's not better or worse than any other static analysis tool, per se. It certainly won't help at all when the component is insecure by design, which is so often the problem. (Why does a document format need a way to execute arbitrary code, for example?)

Re:Stuff

[Burz]

Qubes OS uses a Type 1 hypervisor to simplify and harden system security against such vulnerabilities. The privileged parts of the system are kept relatively small and aren't used for any user applications. All apps and even some drivers (like NICs) are assigned to VMs, which the user can give different trust/risk designations and color codes.

Because isolating hardware is considered part of the solution, Qubes systems need IOMMU hardware to operate securely. But this high degree of isolation is what eliminates holes.

Formal proofs of the system would be nice, but they are hard to do and pointless without hardware isolation. So one could view Qubes as a way to take the smallest functional hypervisor with hardware isolation capabilities (Xen) and use it like a microkernel. One difference with a traditional microkernel is you have the rich feature sets of Linux and Windows kernels/drivers at your disposal within the unprivileged domains.

Re:Stuff

[Uecker]

You haven't understood the point.The formal proof abstracts away implementation details which are irrelevant for correctness. For this reason, It is much simper to understand than the actual implementation. And it does not solve the same problem.

Re:Stuff

[radarskiy]

Robert P. Colwell _The Pentium Chronicles_, p159-160:
"For most of the Pentium design project, the floating point divider was exactly the same as the 486's. But late in the Pentium project, upper management requested that the entire project search for ways to make the die smaller. ...the engineers working on the floating point divider did... an idea to save some space in a lookup table and one of them performed an analytical proof... That proof turned out to be flawed, but the insidious side effect of having performed a "proof" was that it misled the Pentium validation team into thinking there was no real threat of bugs... (This was not surprising, because validation in 1993 did not generally have to check formal proofs.)

"Here's the punch line: The smaller FP divider unit did not make the Pentium chip any smaller....

"So FDIV was not just a design error. It was not just a design error plus a broken formal proof. It was not even just a design error plus a bad proof plus a validation oversight. It was, first and foremost, a conceptual error at the project management error."

Re:Stuff

[lgw]

Yeah, it's those pesky mplementation details where most security flaws are found, and most corner-case bugs that escape testing. Design reviews happen already at most companies.

Re:Stuff

[Uecker]

The proof may show that the implementation performs a certain function according to a certain specification. Knowing this rules out a lot of bugs in the implementation. E.g. a sorting function can be shown to return a correctly sorted list. Once you have a formal proof of this property you do not need to worry about any pesky implementation details of this sorting function anymore. The actual implementation could really complicated because it is highly optimized and has many special cases which may make it difficult to ensure correctness only with testing. Design reviews do not help here.

Re:Stuff

[lgw]

If it can spot a buffer overrun during the sort (even though the correct result is achieved), then at least some value is added - but there are several static analysis tools.

Otherwise, you're just writing the same code in 2 different languages - one high level and one low level, and proving they are functionally equivalent. (In which case, why not just switch to the high level language for production). The whole idea just seems like a high-level language someone was too lazy to write a compiler for, so all it can do is examine the output of some other compiler.

While there's some value in writing a program twice and proving the results equivalent, it's a very narrow case. Most serious production issues in my experience are either design flaws, or "errors in error handling", neither of which formal proofs are likely to help with. Comprehensive unit tests are much more practical, though I guess you can look at them as a kind of formal proof, come to think of it.

Read Headlines Too Fast

[flopsquad]

That's what I get for scrolling through the headlines too fast--I see "One Night in the Hotel Room of the Future, Researcher Exploits 18-Year-Old"...

Re:Read Headlines Too Fast

Academic freedom to experiment is a time-honored tradition in the university world.

Re:Read Headlines Too Fast

[zlives]

its not an exploit, fut a designed feature... o wait

Uh oh

[LichtSpektren]

Three questions: 1) Is it possible to fix this with a downloadable firmware patch? 2) Will such a patch be forthcoming from Intel and/or AMD? 3) Until then, is there any way to protect my x86 machines, other than the obvious "avoid suspicious files" approach?

Re:Uh oh

Read the article, you choad.

Re:Uh oh

[LichtSpektren]

Read the article, you choad.

I did. 1) not stated [Intel is working on firmware patches; but to what extent? for every x86 processor ever made since 1997?]; 2) not stated; 3) not stated. I was hoping somebody here would have some more detailed information.

Re: Uh oh

You forgot "trusted" corporate websites who pursue additional revenue models through ad-networks, or public wireless hotspots where you could be "misled".

You think was a accident?

"Do you think that is air that you're breathing?" The Matrix has you.

Yeah, suddenly

my collection of 8 bit micros doesn't look so silly anymore.

Not every chip

[BIOS4breakfast]

In the talk he said it was Sandy Bridge and older. Ivy Bridge/Haswell/Broadwell/Sky Lake are not affected. Ivy Bridge was apparently released in 2012 - https://en.wikipedia.org/wiki/... But 1997-2012 is still a decent window of time. In the talk he also said that it's un-patchable (it's not, the SMI handler can check whether the APIC overlaps the SMM range and change it) He also said SMM controls every instruction from the boot. It doesn't. Maybe on the crappy Acer netbooks that he said he was using for tests. But on enterprise grade systems from Dell, Lenovo, or HP, they use "protected range registers" to stop SMM from being able to write to the code in the firmware. It's a good find, but he's got a lot to learn about firmware still.

Re:Not every chip

[Khyber]

"the SMI handler can check whether the APIC overlaps the SMM range and change it"

Not if the SMB drivers aren't installed for the OS, no.

Which does not bode well for those who deliberately put an older OS on newer hardware, given SMB drivers for a lot of newer stuff doesn't even have an XP version.

Not like it affects performance, just affects security.

Re:Not every chip

[The+Finn]

what are these SMB drivers? how do they affect existing SMM code which is provided in BIOS?

I have told you people REPEATEDLY about this one

[Khyber]

If you go back through my comments, I told you that every x86 processor on the planet made since Pentium has been vulnerable.

This was the exact exploit I refused to go into full detail, except for saying the inherent problem is in the silicon itself.

And I was downmodded to hell and back.

Those that doubted me, you can eat crow, now!

Throw out your computer if you get a SMM virus?

[TheNarrator]

So, if I understand correctly, if you get a rootkit in your SMM you have to throw out your computer?

Re:Throw out your computer if you get a SMM virus?

If you get an SMM virus, chances are you won't know about it unless it wants you to know it is there.

Pretty much like a lot of the malware out there that isn't adware.

Not really

[ArchieBunker]

Intel fixed this in 2011.

Exploit for machines that are already compromised

[Geoffrey.landis]

Design flaw my ass. I bet it was there deliberately and everybody knows who originally requested it. I just love the good ol US of A.

From the article linked:

"To exploit the vulnerability and install the rootkit, attackers would need to already have kernel or system privileges on a computer. That means the flaw cant be used by itself to compromise a system, but could make an existing malware infection highly persistent and completely invisible."

This doesn't let an outsider break into the system; it is a flaw that only is useful if you have already compromised the machine.

Finding a less-popular target

[macs4all]

All this recent news makes me want to fire-up my PowerPC-based G5 Tower again. Then I can simply worry about unpatched SSL vulnerabilities in OS X 10.5 Leopard.

But at least no one will be writing exploits that can easily run on my computer.

Re:Finding a less-popular target

[U2xhc2hkb3QgU3Vja3M]

Or switch to Linux running on Arm. The Raspberry Pi 2 is good enough for basic desktop tasks.

Re:Finding a less-popular target

[macs4all]

Or switch to Linux running on Arm. The Raspberry Pi 2 is good enough for basic desktop tasks.

Wow, you REALLY want me to have no Applications!!!

The Year of the Raspberry Pi On The Desktop, Woohoo!!!

Re:Finding a less-popular target

[U2xhc2hkb3QgU3Vja3M]

The Year of the Raspberry Pi On The Desktop

We got a new meme!

Re:Finding a less-popular target

[macs4all]

The Year of the Raspberry Pi On The Desktop

We got a new meme!

LOL! I want credit for that... ;-)

Re:Finding a less-popular target

[currently_awake]

You could port Android to the Rasberry, then you'd have apps.

Re:Exploit for machines that are already compromis

Thank goodness all the other zero-day flaws have been fixed in Windows, OSX, and Linux. And BDS is dying (Netcraft confirms it!)

Nelson laugh

From another satisfied AMD customer.

How long have NSA perhaps known about this?

I would like to know, how long have NSA known about this? Assuming ofc, that they do have known.

Re:I have told you people REPEATEDLY about this on

[gtall]

Will you please forgive us?

Secure Boot hacked

[GameboyRMH]

Oh, the fools! If only they'd built it with two layers of bootkit protection! When will they learn?!?

Re:Exploit for machines that are already compromis

[steelfood]

This doesn't let an outsider break into the system; it is a flaw that only is useful if you have already compromised the machine.

For a Windows machine, that's not a very high bar, especially in 1997 and all the way until... well, it's a little harder today, but not that much harder...

The problem is persistence. If you get root, you can get firmware and nothing short of throwing the motherboard away would fix it. That's scary.

Re:I have told you people REPEATEDLY about this on

If you go back through my comments, I told you that every x86 processor on the planet made since Pentium has been vulnerable.

This was the exact exploit I refused to go into full detail, except for saying the inherent problem is in the silicon itself.

And I was downmodded to hell and back.

Those that doubted me, you can eat crow, now!

There's a lesson you can learn from this experience: provide detailed information and proof of your claims if you want to be taken seriously. Until you can do that, the only person eating crow is you.

Not new at all..

This isn't new ground at all. Originally covered in phrack #66 (2009) (http://phrack.org/issues/66/11.html#article) and phrack #65 (2008) (http://phrack.org/issues/65/7.html#article).

Is this a good thing?

[morgauxo]

Are there computers out there that are locked into Windows due to UEFI that could be freed through this hack?

Ohh, the venerated SMM

[tibit]

SMM was a "nice" idea in more timid times. It let unscrupulous vendors emulate missing hardware features with (usually poorly written) firmware. I had quite enough head-banging when trying to implement realtime audio I/O on systems that turned out to emulate sound blaster and other industry standards.

Simple way to avoid the problem on Macs...

[tlambert]

Simple way to avoid the problem on Macs... don't load BootCamp, and you won't have SMM on the systems you load under bootcamp.

Mac OS X itself doesn't use SMM. Instead, it uses a PE (Platform Expert) module that loaded as part of the OS, which knows in detail about the hardware platform it's going to be running on. Without bootcamp, there's not even ACPI support, since power management is implemented in a much more discrete level of steps than the 4 which ACPI provides.

Re:Simple way to avoid the problem on Macs...

[The+Finn]

OS X may not generate SMIs, but are you also asserting that SMM handlers are never run on Apple hardware running OS X?

Re:Happy Friday from The Golden Girls!

You must be new here ...

Re:Happy Friday from The Golden Girls!

Someone doesn't know their classic TV ...or their slashdot!

Re:Exploit for machines that are already compromis

[Burz]

Like Windows, Linux is a complex rambling Swiss cheese and privilege escalations are pretty common.

Lean security protocols need to come first, which is why Qubes OS is based on a Type 1 hypervisor (Xen). An attacker can try to use an exploit (like in OP) all they want in an untrusted domain, but they aren't going to get access to the hardware (or the other VMs, unless the user has done something to specifically expose those VMs to the attack).

Re:AUTOMATIC LEAD TOOLS IS BEST FOR BUSINESS

Or visit our website www.LeadToolsGlobal.net

Maybe I'll visit it 100,000 times in quick succession and see what your hosting bill looks like. Since you're spamming Slashdot, you did want a Slashdotting, right?

Sloppy of intel

This is pretty god damn sloppy of intel to allow re-mapping of registers/addresses/variables/anything onto what is supposed to be secured memory ! HAHA !

Good example why chip competitors/competition is needed.

18-year-old design flaw?

[Jake+Griffin]

Which design flaw in the 18-year-old did they exploit? The one where they're impossible to get out of bed? How does this help them compromise x86 chips?

Using a type 1 hypervisor

[davidwr]

Lean security protocols need to come first, which is why Qubes OS [qubes-os.org] is based on a Type 1 hypervisor (Xen). An attacker can try to use an exploit (like in OP) all they want in an untrusted domain, but they aren't going to get access to the hardware (or the other VMs, unless the user has done something to specifically expose those VMs to the attack).

This assumes there is a security layer that is free of exploitable bugs and that there is no way to influence the lower security layers in a way that can exploit bugs in those layers.

That's a very big assumption unless the security layer you are talking about AND all lower security layers are all so simple that the code can be proven bug-free by inspection.

Computers should have a hardware reset button

[davidwr]

I've been saying for years that computers should have a hardware reset button or (for chips) a pin that restores them to a known factory state. If the button is pressed or the pin is set during initial power-on from a cold boot, the factory reset occurs. Any "infected" code will never get a chance to take control before the reset is finished.

Obviously now I'm going to have to extend that recommendation to any system or subsystem - including the CPU - which can be reprogrammed or save state in a way that survives power loss.

righttttt

You forgot to put "Design Flaw" in quotes.

Re:Happy Friday from The Golden Girls!

[doccus]

I blame /. for my knowledge of "cosmonaut"..

Re: Exploit for machines that are already compromi

If the drive comes pre-installed with Windows you should consider it previously compromised.

Wait a sec

[felipou]

18 years ago was 1997?

Fuck, I feel old now.