On Wed, 18 Mar 2009 17:52:09 -0400, Alex Eckelberry wrote:
> Security Researchers Joanna Rutkowska > <http://www.blogger.com/profile/07657268181166351141> and Loic Duflot > are planning to release a research paper + exploit code for a new SMM > (System Management Mode) rootkit that installs via an Intel(r) CPU > caching vulnerability. Joanna, of blue pill fame, > <http://www.networkworld.com/community/node/18197> reported this on her > blog As I recall, SMM mode is only about as old as the pentium pro... I suppose this puts a thorn in the side of all those new-fangled 'hardware virtualization' systems, but aren't things like imperfectly implemented firmware-driven devices, direct DMA devices (firewire), and the like just as risky given such a partitioned CPU environment? _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
