- Joined
- May 14, 2004
- Messages
- 27,031 (3.71/day)
Processor | Ryzen 7 5700X |
---|---|
Memory | 48 GB |
Video Card(s) | RTX 4080 |
Storage | 2x HDD RAID 1, 3x M.2 NVMe |
Display(s) | 30" 2560x1600 + 19" 1280x1024 |
Software | Windows 10 64-bit |
An unpatched flaw in drivers from ATI creates a means to smuggle malware past improved security defences in the latest version of Windows and into the Vista kernel.
Microsoft is working with ATI on an update which security watchers warn might be far from straightforward to roll-out.
View at TechPowerUp Main Site
Microsoft is working with ATI on an update which security watchers warn might be far from straightforward to roll-out.
The existence of the security flaw in ATI's driver came to light after developer Alex Ionescu released a proof-of-concept tool called Purple Pill that created an easy way to load and unload unsigned (potentially malicious) drivers on Vista. The utility circumvented new anti-rootkit defences built into Vista by turning off checks for signed drivers.
Ionescu pulled the utility hours after its release after realising that the ATI driver flaw Purple Pill uses, which he learned about in a presentation by Vista kernel security expert Joanna Rutkowska at Black Hat last week, is yet to be patched.
View at TechPowerUp Main Site