Free Republic
Browse · Search 		General/Chat
Topics · Post Article

To: the anti-liberal; raybbr; OneWingedShark; ShadowAce
Well, I guess I’m glad I’ve got AMD.
AMD also uses SMM. I'm wondering if this "exploit" only works on Intel(?)
And if you need ring 0 priviledge, doesn't that make a remote hack impossible?
Anyone? Anyone? Bueller?
7 posted on 03/19/2009 10:10:29 AM PDT by astyanax (Status quo, you know, is Latin for 'the mess we're in.' Ronald Reagan)
[ Post Reply | Private Reply | To 3 | View Replies ]

To: astyanax
You are correct.

"If there is a bug somewhere and if it stays unpatched..." and if someone could somehow rewrite firmware from unpriviledged user application, and if, after all that, someone could somehow "call home" (critical for any exploit to be useful, and has to be executed, again, using the unpriviledged user level, which will be intercepted by even primitive firewalls) ...

I'd say the chances for exploiting this in an undetecteble rootkit are pretty "remote". Not that vigilance is not warranted, but releasing the exploits will help others, besides Intel, to find a rootkit detection and/or fix on a callback level.

Well done, Joanna!

13 posted on 03/19/2009 10:42:59 AM PDT by CutePuppy (If you don't ask the right questions you may not get the right answers)
[ Post Reply | Private Reply | To 7 | View Replies ]

Free Republic
Browse · Search 		General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson