CPU Errata Turn Security Vulnerabilities

btarunr · Jul 15, 2008, 07:01 PM

Security vulnerabilities have plagued the computing world ever since computing became a significant advance of mankind. As of today, the plethora of security software we use that gobble money, system resources and network bandwidth to keep our computers and networks safe, have done a good job and it's relatively 'peaceful' these days. And just when we thought so, enter Kris Kaspersky, eminent security researcher, comes up with the hypothesis that microcode errors, known errors and flaws in the design of CPUs could be exploited by malicious code to attack and compromise systems irrespective of which operating system (OS) and other software are running. Kaspersky claims that different errata of the CPU could be exploited differently.

Kaspersky plans to validate his claims by a demonstration during the Hack-in-the-box (HITB) event this October, where he will demonstrate different attacks specific to the errata of different processors. He told PC World, “I'm going to show real working code...and make it publicly available. Some bugs just crash the system; some allow a hacker to gain full control on the kernel level. Some just help to attack Vista, disabling security protections.”

For the know, even the most recent "Silverthrone" Atom processors have a list of errata, we all remember the Translation Look-aside Buffer erratum that AMD shipped its initial K10 processors with, which plagued sales of the Quad-core AMD Barcelona and Agena parts, and of how Intel delayed launch of Penryn to fix design flaws. That brings us to the burning question: why on earth would Kaspersky want to release the code to create such malware, and discover this vulnerability in the first place? Oh, it means business for Kapersky, a vendor of security software himself, and other security providers. Interestingly, such security patches come in the form of patches to the BIOS a-là the immediate fix for TLB-affected AMD processors. Fresh headache for BIOS coders of Motherboards, or maybe there's a business to that too? Perhaps 'Best security features' could be the next mantra for motherboard vendors, like 'best energy-saving features' is now.

Source: DailyTech

Jul 15, 2008, 07:05 PM

lol, this is going to provide real publicity to his soft "Kaspersky" .

Darkrealms · Jul 15, 2008, 07:29 PM

LoL, go figure. Now we have to pick our primary hardware based on virus problems. Wonder when he's going to find something for video cards. . .

candle_86 · Jul 15, 2008, 07:31 PM

meh most attacks can be stopped with a good hardware firewall and safe browsing, unless they put a virus on my paid porn sites or into wow im good

bubba_000 · Jul 15, 2008, 07:39 PM

Did you know..................

that a virus can copy itself to your DVD burner's buffer

And evade any antivirus and then copy istelf back to the HDD, while overcharging the drive's motor causing CDs to explode and posibly shred any living thing within 10 metres?

The solution?

GET A CERTIFIED SECURE DVD DRIVE WITH A SELF-DESTRUCT MECHANISM.NOW

panchoman · Jul 15, 2008, 07:46 PM

Quote:

Originally Posted by Darkrealms

LoL, go figure. Now we have to pick our primary hardware based on virus problems. Wonder when he's going to find something for video cards. . .

brute force hacks run over 50x faster on a gpu(tested with an x1950 i think) then a cpu.. making a password that could take months to brute force(hence the weekly, bi or tri weekly password changes that a lot of companies make you do etc), cracked in 2-3 days using an x1950(not sure)... now imagine it on the 800 stream processors on the R770.

i must say though

Kaspersky. you guys just introduced a whole new breed of viruses and trojans (unforutnantly, its not the rubber kind), and you fucking released the code? i hope your damn software can block the attacks that you've introduced!

also, this will definently become a factor in hardware choices. wonder when gigabyte starts saying.. "hey guys! quad protection against erotic exploits that the kaspersky idiots introduced."

time to buy a new revision errata-free phenom lol.

chron · Jul 15, 2008, 07:50 PM

Quote:

Originally Posted by candle_86

meh most attacks can be stopped with a good hardware firewall and safe browsing, unless they put a virus on my paid porn sites or into wow im good

taking the free tour doesn't count as your "paid porn sites"

Katanai · Jul 15, 2008, 07:55 PM

So yeah this kinda answers the question: who makes those damn viruses? We have the leading expert right here...

Darkrealms · Jul 15, 2008, 08:11 PM

Quote:

Originally Posted by Katanai

So yeah this kinda answers the question: who makes those damn viruses? We have the leading expert right here...

Sadly he kinda makes it hard for me NOT to agree with you : (

yogurt_21 · Jul 15, 2008, 08:18 PM

old news, this happened with all the old cpu's then the athlon 64's hit the picture and it became harder to do, I imagine if it starts to become a problem again, intel and amd will just release a product that blocks it. no biggie

eidairaman1 · Jul 15, 2008, 08:25 PM

this guy is just trying to exploit another region to make more money is all, it takes malicious code for these companies to be around, so i wouldnt be surprised if they release malicious code themselves every so often.

Mussels · Jul 16, 2008, 12:35 AM

i thought the xD bit (or whatever it was) was meant to counter this?

candle_86 · Jul 16, 2008, 03:03 AM

Quote:

Originally Posted by chron

taking the free tour doesn't count as your "paid porn sites"

hey who said free tour, i spend about 60 a month on my porn tyvm

btarunr · Jul 16, 2008, 04:55 AM

Quote:

Originally Posted by Mussels

i thought the xD bit (or whatever it was) was meant to counter this?

Processors still have errata which Intel/AMD found insignificant and did not patch. Such flaws are now turning to vulnerabilities. Kaspersky wants to prove that.

Black Hades · Jul 16, 2008, 05:33 AM

Quote:

Originally Posted by candle_86

hey who said free tour, i spend about 60 a month on my porn tyvm

Too much info...

Back on topic:
It's better he releases such info, if this kind of thing is kept in the shadows for too long it actually causes more damage.
A good example of this happening is the firewire design flaw:
Endgadget Article
Technical info

tkpenalty · Jul 16, 2008, 01:58 PM

E Terrorist much?

spud107 · Jul 16, 2008, 02:08 PM

so he's going to make virus code/program/whatever, show it off and make it availiable to people who really shoudn't see it?
am i missing something or is he an arsehole?

Assimilator · Jul 16, 2008, 05:30 PM

This is hardly new news. The original Pentium suffered from the so-called "f00f" bug way back in 1997, and considering that processors have become so much more complex since then, it's very likely that there are a number of undiscovered, but potentially serious vulnerabilities in todays CPUs.

Unfortunately, drawing attention to these issues is the only way they'll get fixed, so I have to say I think Kaspersky is in the right.

Jul 15, 2008, 07:01 PM	#1
btarunr Editor & Senior Moderator Join Date: Oct 2007 Location: Hyderabad, India Posts: 15,030 (7.23/day) Thanks: 790 Thanked 13,028 Times in 5,719 Posts System Specs	CPU Errata Turn Security Vulnerabilities Security vulnerabilities have plagued the computing world ever since computing became a significant advance of mankind. As of today, the plethora of security software we use that gobble money, system resources and network bandwidth to keep our computers and networks safe, have done a good job and it's relatively 'peaceful' these days. And just when we thought so, enter Kris Kaspersky, eminent security researcher, comes up with the hypothesis that microcode errors, known errors and flaws in the design of CPUs could be exploited by malicious code to attack and compromise systems irrespective of which operating system (OS) and other software are running. Kaspersky claims that different errata of the CPU could be exploited differently. Kaspersky plans to validate his claims by a demonstration during the Hack-in-the-box (HITB) event this October, where he will demonstrate different attacks specific to the errata of different processors. He told PC World, “I'm going to show real working code...and make it publicly available. Some bugs just crash the system; some allow a hacker to gain full control on the kernel level. Some just help to attack Vista, disabling security protections.” For the know, even the most recent "Silverthrone" Atom processors have a list of errata, we all remember the Translation Look-aside Buffer erratum that AMD shipped its initial K10 processors with, which plagued sales of the Quad-core AMD Barcelona and Agena parts, and of how Intel delayed launch of Penryn to fix design flaws. That brings us to the burning question: why on earth would Kaspersky want to release the code to create such malware, and discover this vulnerability in the first place? Oh, it means business for Kapersky, a vendor of security software himself, and other security providers. Interestingly, such security patches come in the form of patches to the BIOS a-là the immediate fix for TLB-affected AMD processors. Fresh headache for BIOS coders of Motherboards, or maybe there's a business to that too? Perhaps 'Best security features' could be the next mantra for motherboard vendors, like 'best energy-saving features' is now. Source: DailyTech Last edited by W1zzard; Jul 15, 2008 at 07:08 PM.

System Name:	Blackbox
Processor:	AMD FX-8350
Motherboard:	ASUS M5A99FX Pro R2.0
Cooling:	Xigmatek Aegir SD128264 with IC Diamond 24 Thermal Compound
Memory:	16 GB Corsair Vengeance DDR3-1600
Video Card:	Palit GeForce GTX 680 JetStream 2GB outfitted with IC Diamond 24 TIM
Hard Disk:	Samsung 840 Series 250GB
Optical Drive:	HT-LG DVD-RW
CRT/LCD Model:	ViewSonic VX2450wm-LED
Case:	Cooler Master CM690 Window
Sound Card:	Creative SB Recon3D
PSU:	Corsair HX850W
Software:	Windows 8 Pro 64-bit

Jul 15, 2008, 07:29 PM	#3
Darkrealms Join Date: Feb 2007 Location: USA Posts: 844 (0.37/day) Thanks: 52 Thanked 23 Times in 20 Posts	LoL, go figure. Now we have to pick our primary hardware based on virus problems. Wonder when he's going to find something for video cards. . . __________________ ISP F@H TPU RANK

System Name:	Desktop
Processor:	Intel Core 2 Duo E8500 Wolfdale 3.16GHz
Motherboard:	EVGA 132-CK-NF78-A1 LGA 775 NVIDIA nForce 780i SLI
Cooling:	Stock (for now)
Memory:	CORSAIR 4GB (2 x 2GB) 240-Pin DDR2 SDRAM DDR2 800
Video Card:	EVGA 896-P3-1260-AR GeForce GTX 260 896MB
Hard Disk:	SATA
Case:	Alienware Full Tower (yes the old one)
PSU:	CORSAIR CMPSU-750TX 750W
Software:	XP Pro 32/64
Benchmarks:	mf534

System Name:	Old Skool
Processor:	Athlon 64 3500
Motherboard:	ECS Nforce4 A939
Cooling:	ASUS Xmars
Memory:	1.5gb DDR400 2-2-2-5
Video Card:	8400GS
Hard Disk:	80gb ATA
Optical Drive:	CD-RW DVD-Rom
CRT/LCD Model:	Viewsonic
Case:	Coolermaster Centurion
Sound Card:	Sound Blaster Audigy 2
PSU:	Allied 450W
Software:	Windows XP Home SP2

Jul 15, 2008, 07:05 PM	#2
wolf2009 Guest Posts: n/a (0/day)	lol, this is going to provide real publicity to his soft "Kaspersky" .

Jul 15, 2008, 07:31 PM	#4
candle_86 Banned Join Date: Dec 2006 Posts: 2,642 (1.12/day) Thanks: 76 Thanked 237 Times in 200 Posts	meh most attacks can be stopped with a good hardware firewall and safe browsing, unless they put a virus on my paid porn sites or into wow im good

Jul 15, 2008, 07:39 PM	#5
bubba_000 Join Date: Jul 2007 Posts: 60 (0.03/day) Thanks: 11 Thanked 6 Times in 3 Posts System Specs	Did you know.................. that a virus can copy itself to your DVD burner's buffer And evade any antivirus and then copy istelf back to the HDD, while overcharging the drive's motor causing CDs to explode and posibly shred any living thing within 10 metres? The solution? GET A CERTIFIED SECURE DVD DRIVE WITH A SELF-DESTRUCT MECHANISM.NOW

System Name:	Packard Bell MV86-003
Processor:	Core 2 Duo T5500
Motherboard:	MV86
Memory:	2 GB DDR2 667
Video Card:	Mobility Radeon X1700 64 bits 128 MB DDR2
Hard Disk:	100GB @ 5400 RPM
Optical Drive:	Optiarc DVD-RW
Sound Card:	Realtek HD Audio
Software:	Windows Vista Ultimate SP1

Processor:	Amd Athlon X2 4600+ Windsor(90nm) EE(65W) @2.9-3.0 @1.45
Motherboard:	Biostar Tforce [Nvidia] 550
Cooling:	Thermaltake Blue Orb-- bunch of other fans here and there....
Memory:	2 gigs (2x1gb) of patriot ddr2 800 @ 4-4-4-12-2t
Video Card:	Sapphire X1950pro Pci-E x16 @stock@stock on stock
Hard Disk:	Seagate 7200.11 250gb Drive, WD raptors (30/40) in Raid 0
Optical Drive:	Lite-on 20x SATA DVD Burner
CRT/LCD Model:	ANCIENT 15" sony lcd, bought it when it was like 500 bucks
Case:	Apevia X-plorer blue/black
Sound Card:	Onboard- Why get an sound card when you can hum??
PSU:	Antec NeoHe 550-manufactured by seasonic -replacement to the discontinued smart power series
Software:	Windows XP pro SP2 -- vista is still crap

Jul 15, 2008, 07:55 PM	#8
Katanai Join Date: Mar 2008 Posts: 392 (0.20/day) Thanks: 3 Thanked 108 Times in 82 Posts	So yeah this kinda answers the question: who makes those damn viruses? We have the leading expert right here...

Jul 15, 2008, 08:18 PM	#10
yogurt_21 Join Date: Feb 2006 Posts: 4,058 (1.52/day) Thanks: 2,249 Thanked 542 Times in 443 Posts System Specs	old news, this happened with all the old cpu's then the athlon 64's hit the picture and it became harder to do, I imagine if it starts to become a problem again, intel and amd will just release a product that blocks it. no biggie

System Name:	Last of the Mohicans
Processor:	Intel i7 950 @ 4.4GHZ 21x210
Motherboard:	Gigabyte GA-X58A-UD3R
Cooling:	Scythe Mugen 2 rev B (SCMG-2100), stock on gpu's.
Memory:	6GB Kingston HyperX ddr3 1600 9-9-9-27@ 1680
Video Card:	2x Msi gtx 480 :) Still Strong
Hard Disk:	Samsung 840 Pro 256GB OS, 3x WD10EARS in raid 0 games, external 2tb storage, RaptorX 150GB chillin
Optical Drive:	SONY DVD-+RW and sony combo
CRT/LCD Model:	Viewsonic 27" 1080P
Case:	Raidmax Scorpio 668, stupid small ass case has 1 too few expansion slots in the back
Sound Card:	onboard HD
PSU:	Enermax Galaxy 1kw 75amp +12v
Software:	Windows 7 Pro 64-bit
Benchmarks:	thus far max 3d11 11580, Vantage 43977

Jul 15, 2008, 08:25 PM	#11
eidairaman1 Eligible for custom title Join Date: Jul 2007 Location: HTX Posts: 10,099 (4.63/day) Thanks: 1,364 Thanked 1,164 Times in 1,040 Posts System Specs	this guy is just trying to exploit another region to make more money is all, it takes malicious code for these companies to be around, so i wouldnt be surprised if they release malicious code themselves every so often. __________________ Athlon XP USERS with COD 4 FIX http://www.techsupportforum.com/foru...ls-202011.html http://www.howorks.com/2011/02/24/ho...-memory-limit/ “Sometimes my level of fail is unprecedented.” -TheMailMan78 “This is what the force of a thousand suns looks like.” -3870x2

System Name:	BS03/04
Processor:	AMD Athlon XP-M 2500+ 2.2GHz 1.5V
Motherboard:	DFI LanParty NFII Ultra-B Bios (TicTac 3D Fire R2)
Cooling:	4 Antec 80mm, TR SI-97 Adapted TT Big Typhoon Fan 120MM
Memory:	2GB Mushkin Redline 4000 @ 200 MHz 2.5V
Video Card:	Sapphire R1950Pro 512MB AGP 1.5V
Hard Disk:	250 & 400 GB Seagate Baracuda 10 SATA
Optical Drive:	2x Samsung Multiformat Rewritable Drives
CRT/LCD Model:	NEC Multisync LCD 1700V
Case:	Antec SX830 EATX Case
Sound Card:	Creative Labs SB XFi Xtreme Music & SB PCI 512
PSU:	Antec NEO HE 500 Watt
Software:	Windows 7 Home Premium
Benchmarks:	Win 7 Eval. CPU 3.9 Ram 4.5 Graphics 6.0 HD 5.7

Jul 16, 2008, 12:35 AM	#12
Mussels Doctor Moderator Join Date: Oct 2004 Location: Bendigo, Australia (NOT THE USA) Posts: 34,594 (10.89/day) Thanks: 3,708 Thanked 8,714 Times in 6,407 Posts System Specs	i thought the xD bit (or whatever it was) was meant to counter this? __________________ Edumacational thread about PC Audio My external HDD's.5x samsung 1TB + 2x Seagate 1.5TB = 8 TB external storage 32 Bit OS vs 64 bit OS information How to get hardware accelerated H264 playback (DXVA) Netbook Owners United!

System Name:	Real Men use Real Cores!
Processor:	Phenom II x6 1090T: 3600Mhz undervolted (NB+HT at 2.6)
Motherboard:	Gigabyte 890FXA-UD5
Cooling:	Thermalright Ultra 120 Extreme (Lapped + ducted)
Memory:	8GB Corsair Dominator DDR3 - 1600Mhz 7-7-7-20 1.65V
Video Card:	AMD Radeon 5870 1GB Crossfire
Hard Disk:	Intel 520 SSD (120GB), 500GB OS + 18TB of storage (mostly external)
Optical Drive:	Samsung Blu Ray drive (SH-B083A)
CRT/LCD Model:	23.6" Samsung 1080P / Samsung 40" HDTV - 1360x768P
Case:	Coolermaster CM 690 II Advanced (non window)
Sound Card:	Auzentech X-Mystique (Logitech Z5500D + sennheiser HD555 + RE2's)
PSU:	Corsair HX 1000W
Software:	Windows 7 Ultimate x64 - kaspersky internet security 2013
Benchmarks:	Laptop: AMD A6 APU 1.4GHz @2.2GHz quad core + APU crossfire.Iphone 5, Samsung galaxy tab 2 7"

Processor:	Intel C2D E8400 Wolfdale 3.00Ghz (@ 3573 MHz)
Motherboard:	Gigabyte GA-EX38-DS5 (F4 bios)
Cooling:	Zerotherm Nirvana NV120 Premium (CPU); 2x120mm CoolerMaster (front&back); 1x80mm CoolerMaster (top)
Memory:	Mushkin 4Gb XP2-8500 Black Ascent
Video Card:	Gigabyte HD6850 1GB GDDR5
Hard Disk:	WD Caviar Green 1Tb \| WD Caviar 500Gb \| Maxtor 160Gb
Optical Drive:	ASUS DRW-1814BL
CRT/LCD Model:	22" Dell 2209WA A02 E-IPS
Case:	Cooler Master CM Stacker T01
Sound Card:	Realtek ALC889A /w Microlab Solo 6C Speakers
PSU:	Antec NEO 550HE
Software:	Windows 7 x64

Jul 16, 2008, 01:58 PM	#16
tkpenalty Eligible for custom title Join Date: Sep 2006 Location: Australia, Sydney Posts: 5,023 (2.04/day) Thanks: 412 Thanked 361 Times in 266 Posts System Specs	E Terrorist much? __________________ AMD Radeon X1950~HD4000 Support Clubhouse “Mac: "Woah, what are you doing?" Mac says as he levitates in the air. PC: "Playing Half-Life 2, this is my gravity gun." Mac: "Well I can sort of do that." PC: "Technically Mac, you have to become me first."” -From_Nowhere

Jul 16, 2008, 02:08 PM	#17
spud107 Join Date: Feb 2007 Location: scotland Posts: 887 (0.38/day) Thanks: 31 Thanked 137 Times in 122 Posts System Specs	so he's going to make virus code/program/whatever, show it off and make it availiable to people who really shoudn't see it? am i missing something or is he an arsehole? __________________ http://www.hwbot.org/user.do?userId=8360 check out this music http://lapfox.tumblr.com/ 2nd system - Spare Bits - sempron64 3100@1.8ghz - 1gb ddr - 80gb wd hd - nvidia 6800 ultra 256mb - server2003 msi history - 6368coppermine 6373palomino 6577northwood 6570thoroughbred-b 7094san diego 7125toledo “if it's stupid but works, it's not stupid.”

System Name:	spuds K8-X2
Processor:	amd athlon X2 4200+ toledo s939 2794mhz 254x11 1.4 vcore
Motherboard:	MSI K8N Neo4-F v1.0 (MS-7125) nforce4 sata2 mod, laptop cpu heatpipe copper nb cooler
Cooling:	akasa evo "blue" + 90mm fan, 2x120mm front, 250mm side, 120mm rear, 120mm in psu, pci slot exhaust.
Memory:	OCZ Platinum XTC DDR PC3200 4GB(4x1024) @254mhz 3-3-3-8 2T
Video Card:	sapphire HD3870 512mb GDDR4 vf900cu, several ramsinks on components / nvidia 7300gt 256mb secondary
Hard Disk:	hitachi 160gb (slightly fried) / hitachi 120gb ATA / Seagate 160gb / 2x ps3 seagate 60gb
Optical Drive:	PIONEER DVD-RW DVR-108 / LITE-ON DVDRW LH-20A1H / XBOX360 HDDVD drive
CRT/LCD Model:	CTX EX1300F 20" flat CRT, 1280x1024@100hz / 19" benq FP91G X / 19" hanns-g (all free)
Case:	mesh server/gaming black case, 9x 5.25' drive bays, silvestone auto fan controller
Sound Card:	onboard realtek alc850 7.1/soundblaster LIVE! ct4780 + kxaudio - sony home theatre surround
PSU:	winpower 650w, system draws around 470-500w under load(+all screens)
Software:	win7 64bit
Benchmarks:	~16m trips/sec using mty trip generator. triple monitor gaming using SoftTH. 3840x1024

Jul 16, 2008, 05:30 PM	#18
Assimilator Join Date: Feb 2005 Location: South Africa Posts: 427 (0.14/day) Thanks: 113 Thanked 56 Times in 41 Posts System Specs	This is hardly new news. The original Pentium suffered from the so-called "f00f" bug way back in 1997, and considering that processors have become so much more complex since then, it's very likely that there are a number of undiscovered, but potentially serious vulnerabilities in todays CPUs. Unfortunately, drawing attention to these issues is the only way they'll get fixed, so I have to say I think Kaspersky is in the right. __________________ <html> <code> <style> The QuadFather: 4x4x4x4 4 cores (QX9650) / 4 GPUs (2x 9800 GX2) / 4x 2GB DDR2-800 / 4 hard disks (quad 320GB Seagates, RAID-5)

System Name:	Firelance
Processor:	i5 2500K @ 4.6GHz
Motherboard:	Asrock Z77 Extreme6
Cooling:	Corsair H100 w/4x Gentle Typhoon 1800s
Memory:	4x 2GB G.Skill RipjawsX 6-8-6-24
Video Card:	KFA² GeForce GTX 660 Ti OC 3GB
Hard Disk:	OCZ Agility 4 256GB
CRT/LCD Model:	Acer P243W + LG 1970HR
Case:	HAF 932 + DemciFlex dust filters
PSU:	TruePower Quattro 850W
Software:	Windows 7 Professional x64 Service Pack 1

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Overclocking- The basics	Dippyskoodlez	Articles	31	Jan 15, 2009 01:32 AM
Alcpone's Official 3DMark '06 Compilation	Alcpone	General Software	4979	Sep 24, 2008 12:08 AM
Need Help Overclocking Ram And Cpu	berwick53	Overclocking & Cooling	3	Apr 19, 2008 04:48 PM
Albatron K8SLI	W1zzard	Reviews	15	Aug 23, 2007 05:06 AM
DFI LanParty UT NF4 Ultra-D	W1zzard	Reviews	2	Oct 8, 2005 12:32 AM