Updated:04:06 PM EDT Sep 19


this is ggmania.com subsite

NEWS
rss feed 
 
top 100
archive
submit news

FREE eBooks

REVIEWS
 
SOFTWARE
CD/DVD tools
Free Antivir
Security
Drivers
Utilities
 
FORUMS
comments
hardware
software
off-topic
 
LINKS
 
SPONSORS:

Forex Brokers Reviewed



TweakBox

Expert writing tips from professional writers.

Free essay writing tutorials for students.

Booty Bingo

New Look Bingo

Mummies Bingo

M Jackpots

(C) 2006-2017 TechAmok
All Rights Reserved.


CONTACT
 
US-CERT Discloses Security Flaw in Intel Chips - TechAmok

US-CERT Discloses Security Flaw in Intel Chips - [security]
08:05 AM EDT - Jun,17 2012 - post a comment

According to The U.S. Computer Emergency Readiness Team, a flaw has been discovered in Intel chips that would allow hackers to execute malicious code on a variety of 64-bit operating systems. The flaw is limited to chips using SYSRET instruction. Intel has made no comment on the disclosure.
"Some 64-bit operating systems and virtualization software running on Intel CPU hardware are vulnerable to a local privilege escalation attack. The vulnerability may be exploited for local privilege escalation or a guest-to-host virtual machine escape," says the US-CERT.

Several x64-based operating systems like Windows 7, Windows Server 2008 R2, 64-bit FreeBSD, 64-bit NetBSD, as well as systems that include the Xen hypervisor, are exposed to this vulnerability.

While 32-bit operating systems are safe, Intel CPUs that use the Intel 64 extension need the security patches released by Microsoft in their MS12-042 security bulletin.

The VMware virtualization software does not seem affected by the vulnerability as its hypervisor doesn't use the SYSRET instruction, making the virtualization solution safe from attacks. AMD is also on the list of vendors not affected by the privileged escalation exposure issued by US-CERT. Because the SYSRET instruction is handled differently on AMD CPUs, the CVE-2012-0217 vulnerability does not apply to these chips.
The U.S. Computer Emergency Readiness Team (US-CERT) issued a security advisory in which it thoroughly details the vulnerability.


Add your comment (free registrationrequired)

Short overview of recent news articles

Sep,19 2017 Update Lets Galaxy S8, S8+ and Note8 Owners Disable Bixby Home
Sep,19 2017 Apple Releases iOS 11 for iPhones and iPads
Sep,19 2017 Apple Releases WatchOS 4.0 for the Apple Watch
Sep,19 2017 Top 20 Craziest Moments in Tennis History
Sep,19 2017 The Floppotron: Through the Fire and Flames
Sep,19 2017 Upgrade My PC Please! [S01E03] Core i5 Owners Needing Help!
Sep,18 2017 VR Sense Preview - Feel the Scent of the Girls
Sep,18 2017 The iPhone X Needs a $25 USB Type-C Cable to Fast Charge
Sep,17 2017 The best pics on the Internet #238
Sep,17 2017 Rocket Bicycle World Record ǀ 333 km/h (207 mph)
Sep,17 2017 Water-Powered Trike Goes From 0-60 In Half A Second
Sep,17 2017 Search Party (2017) Season 2 Trailer
Sep,16 2017 Intel May Launch Ice Lake 8 Core/16 Thread CPUs in Q2/2018
Sep,16 2017 Verizon Is Disconnecting 8,500 Leechers
Sep,16 2017 Bashware Security Software Bypass Attack
Sep,16 2017 Stupid Android app so you can turn your phone into an iPhone X
Sep,15 2017 Google Deletes Inactive Android Backups After 2 Months
Sep,15 2017 Downsizing (2017) - Official Trailer
>> News Archive <<

TechAmok - Privacy Policy        loading time:0.02secs