NVIDIA Issues Warning to Upgrade Drivers Due to Security Patches

R-T-B · Aug 5, 2019

biffzinker said:
Why does the majority of exploits always require local access?

Because most code doesn't feature a netstack.

lexluthermiester said:
Because the way they work requires direct access to the hardware. Remote attacks are either extremely difficult or impossible.

It's nothing to do with that, really. It's more that nvidia is not stupid and has not given their core driver network access.

medi01 said:
Linus said "fuck 'em" and AMD didn't bother fixing "if someone can put shit onto your BIOS, it means someone can put shit on your computer", as terribly vulnerably vulnerable it is, I think.

It was a code signature verification exploit that actually did get patched in later AGESA.

The whole idea behind trusted execution is that someone CAN write to your bios and get nowhere, really. The sigcheck fails (or should).

phanbuey said:
Then they can use this exploit to execute code locally.

Without admin rights, they can get admin rights.

That's the concern here.

lexluthermiester · Aug 5, 2019

R-T-B said:
It's nothing to do with that, really. It's more that nvidia is not stupid and has not given their core driver network access.

That's not always needed.

R-T-B · Aug 5, 2019

lexluthermiester said:
That's not always needed.

You need to exploit something with a netstack to get a foothold to begin ANY code execution. No port? No exploit surface. So yeah, it is. If nothing is network aware good luck talking to a machine that is quite literally mute.

I would not be surprised if someday the nvidia telemetry components come back and bite them though... they most certainly talk to the net.

phanbuey · Aug 6, 2019

R-T-B said:
You need to exploit something with a netstack to get a foothold to begin ANY code execution. No port? No exploit surface. So yeah, it is. If nothing is network aware good luck talking to a machine that is quite literally mute.

I would not be surprised if someday the nvidia telemetry components come back and bite them though... they most certainly talk to the net.

I kind of hope that they do. There really is no reason why I need my graphics card that i use to play stupid video-games sending back data to nvidia.

moproblems99 · Aug 6, 2019

biffzinker said:
Why does the majority of exploits always require local access?

It doesn't really matter because many attacks are a chain of exploits anyway. It is almost never one and done.

lexluthermiester · Aug 6, 2019

R-T-B said:
You need to exploit something with a netstack to get a foothold to begin ANY code execution. No port? No exploit surface. So yeah, it is. If nothing is network aware good luck talking to a machine that is quite literally mute.

Code injections don't need such a vector of attack.

R-T-B · Aug 6, 2019

lexluthermiester said:
Code injections don't need such a vector of attack.

Ah. I suppose you mean like something executed via say a trojan horse on a usb stick that then opens more facilities to the attacker?

Touche. It's certainly doable for high value targets.

lexluthermiester · Aug 7, 2019

R-T-B said:
Ah. I suppose you mean like something executed via say a trojan horse on a usb stick that then opens more facilities to the attacker?

Touche. It's certainly doable for high value targets.

And a few others, yeah. The catch is, it has to be an admin account that runs any such injection.

System Name	Pioneer
Processor	Ryzen R9 7950X
Motherboard	GIGABYTE Aorus Elite X670 AX
Cooling	Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory	64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s)	XFX RX 7900 XTX Speedster Merc 310
Storage	2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s)	55" LG 55" B9 OLED 4K Display
Case	Thermaltake Core X31
Audio Device(s)	TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply	FSP Hydro Ti Pro 850W
Mouse	Logitech G305 Lightspeed Wireless
Keyboard	WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software	Gentoo Linux x64

System Name	Pioneer
Processor	Ryzen R9 7950X
Motherboard	GIGABYTE Aorus Elite X670 AX
Cooling	Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory	64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s)	XFX RX 7900 XTX Speedster Merc 310
Storage	2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s)	55" LG 55" B9 OLED 4K Display
Case	Thermaltake Core X31
Audio Device(s)	TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply	FSP Hydro Ti Pro 850W
Mouse	Logitech G305 Lightspeed Wireless
Keyboard	WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software	Gentoo Linux x64

Processor	13700KF Undervolted @ 5.6/ 5.5, 4.8Ghz Ring 200W PL1
Motherboard	MSI 690-I PRO
Cooling	Thermalright Peerless Assassin 120 w/ Arctic P12 Fans
Memory	48 GB DDR5 7600 MHZ CL36
Video Card(s)	RTX 4090 FE
Storage	2x 2TB WDC SN850, 1TB Samsung 960 prr
Display(s)	Alienware 32" 4k 240hz OLED
Case	SLIGER S620
Audio Device(s)	Yes
Power Supply	Corsair SF750
Mouse	Xlite V2
Keyboard	RoyalAxe
Software	Windows 11
Benchmark Scores	They're pretty good, nothing crazy.

System Name	Wut?
Processor	3900X
Motherboard	ASRock Taichi X570
Cooling	Water
Memory	32GB GSkill CL16 3600mhz
Video Card(s)	Vega 56
Storage	2 x AData XPG 8200 Pro 1TB
Display(s)	3440 x 1440
Case	Thermaltake Tower 900
Power Supply	Seasonic Prime Ultra Platinum

System Name	Pioneer
Processor	Ryzen R9 7950X
Motherboard	GIGABYTE Aorus Elite X670 AX
Cooling	Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory	64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s)	XFX RX 7900 XTX Speedster Merc 310
Storage	2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s)	55" LG 55" B9 OLED 4K Display
Case	Thermaltake Core X31
Audio Device(s)	TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply	FSP Hydro Ti Pro 850W
Mouse	Logitech G305 Lightspeed Wireless
Keyboard	WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software	Gentoo Linux x64