• Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

CPU Errata Turn Security Vulnerabilities

btarunr

Editor & Senior Moderator
Staff member
Joined
Oct 9, 2007
Messages
34,496 (9.18/day)
Likes
17,519
Location
Hyderabad, India
#1
Security vulnerabilities have plagued the computing world ever since computing became a significant advance of mankind. As of today, the plethora of security software we use that gobble money, system resources and network bandwidth to keep our computers and networks safe, have done a good job and it's relatively 'peaceful' these days. And just when we thought so, enter Kris Kaspersky, eminent security researcher, comes up with the hypothesis that microcode errors, known errors and flaws in the design of CPUs could be exploited by malicious code to attack and compromise systems irrespective of which operating system (OS) and other software are running. Kaspersky claims that different errata of the CPU could be exploited differently.

Kaspersky plans to validate his claims by a demonstration during the Hack-in-the-box (HITB) event this October, where he will demonstrate different attacks specific to the errata of different processors. He told PC World, “I'm going to show real working code...and make it publicly available. Some bugs just crash the system; some allow a hacker to gain full control on the kernel level. Some just help to attack Vista, disabling security protections.”

For the know, even the most recent "Silverthrone" Atom processors have a list of errata, we all remember the Translation Look-aside Buffer erratum that AMD shipped its initial K10 processors with, which plagued sales of the Quad-core AMD Barcelona and Agena parts, and of how Intel delayed launch of Penryn to fix design flaws. That brings us to the burning question: why on earth would Kaspersky want to release the code to create such malware, and discover this vulnerability in the first place? Oh, it means business for Kapersky, a vendor of security software himself, and other security providers. Interestingly, such security patches come in the form of patches to the BIOS a-là the immediate fix for TLB-affected AMD processors. Fresh headache for BIOS coders of Motherboards, or maybe there's a business to that too? Perhaps 'Best security features' could be the next mantra for motherboard vendors, like 'best energy-saving features' is now.

Source: DailyTech
 
Last edited by a moderator:
Joined
Feb 26, 2007
Messages
850 (0.21/day)
Likes
23
Location
USA
#3
LoL, go figure. Now we have to pick our primary hardware based on virus problems. Wonder when he's going to find something for video cards. . .
 

candle_86

New Member
Joined
Dec 28, 2006
Messages
3,914 (0.97/day)
Likes
227
#4
meh most attacks can be stopped with a good hardware firewall and safe browsing, unless they put a virus on my paid porn sites or into wow im good
 

bubba_000

New Member
Joined
Jul 3, 2007
Messages
76 (0.02/day)
Likes
5
System Name Packard Bell MV86-003
Processor Core 2 Duo T5500
Motherboard MV86
Memory 2 GB DDR2 667
Video Card(s) Mobility Radeon X1700 64 bits 128 MB DDR2
Storage 100GB @ 5400 RPM
Audio Device(s) Realtek HD Audio
Software Windows Vista Ultimate SP1
#5
Did you know..................

that a virus can copy itself to your DVD burner's buffer:eek: And evade any antivirus and then copy istelf back to the HDD, while overcharging the drive's motor causing CDs to explode and posibly shred any living thing within 10 metres?

The solution?

GET A CERTIFIED SECURE DVD DRIVE WITH A SELF-DESTRUCT MECHANISM.NOW
 

panchoman

Sold my stars!
Joined
Jul 16, 2007
Messages
9,595 (2.50/day)
Likes
1,148
Processor Amd Athlon X2 4600+ Windsor(90nm) EE(65W) @2.9-3.0 @1.45
Motherboard Biostar Tforce [Nvidia] 550
Cooling Thermaltake Blue Orb-- bunch of other fans here and there....
Memory 2 gigs (2x1gb) of patriot ddr2 800 @ 4-4-4-12-2t
Video Card(s) Sapphire X1950pro Pci-E x16 @stock@stock on stock
Storage Seagate 7200.11 250gb Drive, WD raptors (30/40) in Raid 0
Display(s) ANCIENT 15" sony lcd, bought it when it was like 500 bucks
Case Apevia X-plorer blue/black
Audio Device(s) Onboard- Why get an sound card when you can hum??
Power Supply Antec NeoHe 550-manufactured by seasonic -replacement to the discontinued smart power series
Software Windows XP pro SP2 -- vista is still crap
#6
LoL, go figure. Now we have to pick our primary hardware based on virus problems. Wonder when he's going to find something for video cards. . .
brute force hacks run over 50x faster on a gpu(tested with an x1950 i think) then a cpu.. making a password that could take months to brute force(hence the weekly, bi or tri weekly password changes that a lot of companies make you do etc), cracked in 2-3 days using an x1950(not sure)... now imagine it on the 800 stream processors on the R770.

i must say though :nutkick:Kaspersky. you guys just introduced a whole new breed of viruses and trojans (unforutnantly, its not the rubber kind), and you fucking released the code? i hope your damn software can block the attacks that you've introduced!

also, this will definently become a factor in hardware choices. wonder when gigabyte starts saying.. "hey guys! quad protection against erotic exploits that the kaspersky idiots introduced."

time to buy a new revision errata-free phenom lol.
 

chron

New Member
Joined
May 21, 2006
Messages
569 (0.13/day)
Likes
33
#7
meh most attacks can be stopped with a good hardware firewall and safe browsing, unless they put a virus on my paid porn sites or into wow im good
taking the free tour doesn't count as your "paid porn sites" ;)
 
Joined
Mar 15, 2008
Messages
1,092 (0.30/day)
Likes
159
#8
So yeah this kinda answers the question: who makes those damn viruses? We have the leading expert right here...
 
Joined
Feb 18, 2006
Messages
5,111 (1.17/day)
Likes
1,294
Location
AZ
System Name Thought I'd be done with this by now
Processor i7 4790K 4.4GHZ turbo currently at 4.6GHZ at 1.16v
Motherboard MSI Z97-G55 SLI
Cooling Scythe Mugen 2 rev B (SCMG-2100), stock on gpu's.
Memory 8GB G.SKILL Ripjaws Z Series DDR3 2400MHZ 10-12-12-31
Video Card(s) EVGA GTX 760 Superclocked replaced HIS R9 290 that was artifacting
Storage 1TB MX300 M.2 OS + Games, 4x ST31000524NS in Raid 10 Storage and Backup, external 2tb backup,
Display(s) BenQ GW2255 surprisingly good screen for the price.
Case Raidmax Scorpio 668
Audio Device(s) onboard HD
Power Supply EVGA 750 GQ
Software Windows 10
Benchmark Scores no one cares anymore lols
#10
old news, this happened with all the old cpu's then the athlon 64's hit the picture and it became harder to do, I imagine if it starts to become a problem again, intel and amd will just release a product that blocks it. no biggie
 

eidairaman1

The Exiled Airman
Joined
Jul 2, 2007
Messages
19,770 (5.13/day)
Likes
5,175
System Name PCGOD
Processor AMD FX 8350@ 5.0GHz
Motherboard Asus TUF 990FX Sabertooth R2 2901 Bios
Cooling Scythe Ashura, 2×BitFenix 230mm Spectre Pro LED (Blue,Green), 2x BitFenix 140mm Spectre Pro LED
Memory 16 GB Gskill Ripjaws X 2133 (2400 OC, 10-10-12-20-20, 1T, 1.65V)
Video Card(s) AMD Radeon 290 Sapphire Vapor-X
Storage Samsung 840 Pro 256GB, WD Velociraptor 1TB
Display(s) NEC Multisync LCD 1700V (Display Port Adapter)
Case AeroCool Xpredator Evil Blue Edition
Audio Device(s) Creative Labs Sound Blaster ZxR
Power Supply Seasonic 1250 XM2 Series (XP3)
Mouse Roccat Kone XTD
Keyboard Roccat Ryos MK Pro
Software Windows 7 Pro 64
#11
this guy is just trying to exploit another region to make more money is all, it takes malicious code for these companies to be around, so i wouldnt be surprised if they release malicious code themselves every so often.
 

Mussels

Moderprator
Staff member
Joined
Oct 6, 2004
Messages
46,206 (9.52/day)
Likes
13,693
Location
Australalalalalaia.
System Name Daddy Long Legs
Processor Ryzen R7 1700, 3.9GHz 1.375v
Motherboard MSI X370 Gaming PRO carbon
Cooling Fractal Celsius S24 (Silent fans, meh pump)
Memory 16GB 2133 generic @ 2800
Video Card(s) MSI GTX 1080 Gaming X (BIOS modded to Gaming Z - faster and solved black screen bugs!)
Storage 1TB Intel SSD Pro 6000p (60TB USB3 storage)
Display(s) Samsung 4K 40" HDTV (UA40KU6000WXXY) / 27" Qnix 2K 110Hz
Case Fractal Design R5. So much room, so quiet...
Audio Device(s) Pioneer VSX-519V + Yamaha YHT-270 / sennheiser HD595/518 + Corsair Void RGB
Power Supply Corsair HX 750i (Platinum, fan off til 300W)
Mouse Logitech G403 + KKmoon desk-sized mousepad
Keyboard Corsair K65 Rapidfire
Software Windows 10 pro x64 (all systems)
Benchmark Scores Laptops: i7-4510U + 840M 2GB (touchscreen) 275GB SSD + 16GB i7-2630QM + GT 540M + 8GB
#12
i thought the xD bit (or whatever it was) was meant to counter this?
 

btarunr

Editor & Senior Moderator
Staff member
Joined
Oct 9, 2007
Messages
34,496 (9.18/day)
Likes
17,519
Location
Hyderabad, India
#14
i thought the xD bit (or whatever it was) was meant to counter this?
Processors still have errata which Intel/AMD found insignificant and did not patch. Such flaws are now turning to vulnerabilities. Kaspersky wants to prove that.
 
Joined
Sep 11, 2007
Messages
300 (0.08/day)
Likes
31
Location
Ambugaton
Processor Intel Skylake i5 6500 3.2 Ghz
Motherboard Gigabyte GA-Z170-HD3p
Cooling Stock Intel
Memory HyperX Fury Black 32GB DDR4 2400Mhz CL15 1.2v
Video Card(s) Gigabyte GeForce GTX 1070 G1 8GB GDDR5 256bit
Storage ADATA Premier Pro 240GB & NAS - 4Tb Raid 1
Display(s) 22" Dell 2209WA A02 E-IPS
Case Cooler Master CM Silencio 452
Audio Device(s) Realtek ALC /w Microlab Solo 6C Speakers
Power Supply Seasonic M12II-620 EVO Bronze 620W
Software Windows 10 x64
#15
hey who said free tour, i spend about 60 a month on my porn tyvm
Too much info...


Back on topic:
It's better he releases such info, if this kind of thing is kept in the shadows for too long it actually causes more damage.
A good example of this happening is the firewire design flaw:
Endgadget Article
Technical info
 
Joined
Feb 12, 2007
Messages
1,192 (0.30/day)
Likes
128
Location
scotland
System Name spuds K8-X2
Processor amd athlon X2 4200+ toledo s939 2794mhz 254x11 1.4 vcore
Motherboard MSI K8N Neo4-F v1.0 (MS-7125) nforce4 sata2 mod, laptop cpu heatpipe copper nb cooler
Cooling akasa evo "blue" + 90mm fan, 2x120mm front, 250mm side, 120mm rear, 120mm in psu, pci slot exhaust.
Memory OCZ Platinum XTC DDR PC3200 4GB(4x1024) @254mhz 3-3-3-8 2T
Video Card(s) sapphire HD3870 512mb GDDR4 vf900cu, several ramsinks on components / nvidia 7300gt 256mb secondary
Storage hitachi 160gb (slightly fried) / hitachi 120gb ATA / Seagate 160gb / 2x ps3 seagate 60gb
Display(s) CTX EX1300F 20" flat CRT, 1280x1024@100hz / 19" benq FP91G X / 19" hanns-g (all free)
Case mesh server/gaming black case, 9x 5.25' drive bays, silvestone auto fan controller
Audio Device(s) onboard realtek alc850 7.1/soundblaster LIVE! ct4780 + kxaudio - sony home theatre surround
Power Supply winpower 650w, system draws around 470-500w under load(+all screens)
Software win7 64bit
Benchmark Scores ~16m trips/sec using mty trip generator. triple monitor gaming using SoftTH. 3840x1024
#17
so he's going to make virus code/program/whatever, show it off and make it availiable to people who really shoudn't see it?
am i missing something or is he an arsehole?
 
Joined
Feb 18, 2005
Messages
1,303 (0.28/day)
Likes
646
Location
South Africa
System Name Firelance
Processor i7-3770K @ 4.6GHz / 1.23V
Motherboard Gigabyte Z77X-UD5H @ F16h mod BIOS
Cooling Corsair H105 + 4x Gentle Typhoon 1850
Memory 2x 8GB Crucial Ballistix Sport DDR3-1600 CL9 @ CL7
Video Card(s) MSI GTX 1070 Armor OC with Gaming X BIOS @ 2000 core / 2300 mem
Storage 2x 256GB 840 Pro (RAID-0) + 3TB Deskstar 7K3000 + 512GB BX300 + 8TB WD Purple
Display(s) Dell U2713HM (25x14) + Acer P243W (19x12)
Case Thermaltake Core X31
Audio Device(s) Corsair VOID Wireless
Power Supply Seasonic SS-760XP² Platinum
Mouse Logitech G400
Keyboard Logitech G19
Software Windows 7 Professional x64 Service Pack 1
#18
This is hardly new news. The original Pentium suffered from the so-called "f00f" bug way back in 1997, and considering that processors have become so much more complex since then, it's very likely that there are a number of undiscovered, but potentially serious vulnerabilities in todays CPUs.

Unfortunately, drawing attention to these issues is the only way they'll get fixed, so I have to say I think Kaspersky is in the right.