There is a reason why user mode and kernel mode are separate, and there is a reason why kernel mode and SMM mode are separate. This is a very big leak.
It’s not that hard to gain access to the kernel from user access. It’s just a matter of loading an old, vulnerable driver and executing an exploit. AMD is completely downplaying the leak here by comparison. I should be able to run a hacked kernel without infecting my motherboard with a virus.
Such exploits were previously the reason Intel removed a feature from its CPUs. This has the added drawback that the new processors cannot play some Blu-ray discs with purchased software because DRM works with Intel’s SGX.
Especially since the PSP’s misconfiguration, a sort of God Mode processor that’s been put in place under the guise of “security,” is a big problem. This storage is protected against flashing precisely because it poses such a risk. If the CPU can reflash this thing, you can practically throw out your motherboard once you’ve been infected with a PSP virus.
Fortunately, this is also a leak that can be fixed with firmware updates, but leaks of this magnitude are already a problem. Personally, I would still prefer a system with a major vulnerability than one that self-destructs under load, but AMD and Intel have really screwed this up.
[Reactie gewijzigd door GertMenkel op 11 augustus 2024 13:46]