[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: What do Meltdown and Spectre mean for libreboot x200 user?
|
From: |
Andy Wingo |
|
Subject: |
Re: What do Meltdown and Spectre mean for libreboot x200 user? |
|
Date: |
Mon, 15 Jan 2018 14:25:41 +0100 |
|
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/25.3 (gnu/linux) |
Greets,
On Mon 15 Jan 2018 12:32, Leah Rowe <address@hidden> writes:
> The implications [of Meltdown/Spectre] at firmware level are
> non-existent (for instance, these attacks can't, to my knowledge, be
> used to actually run/modify malicious code, just read memory, so it's
> not as if some evil site could install malicious boot firmware in your
> system).
I agree that it's unlikely that a site could install boot firmware, but
AFAIU it's not out of the realm of possibility. The vector I see would
be using Meltdown/Spectre to read authentication/capability tokens which
could be used to gain access, either via some other RCE vuln or possibly
via remote access. Maybe evil code could find an SSH private key in a
mapped page, for example, which the evil server could use to SSH
directly to your machine. But I admit that it's a bit farfetched :)
Andy
- Re: Meltdown / Spectre, (continued)
- Re: Meltdown / Spectre, Tobias Platen, 2018/01/10
- Re: Meltdown / Spectre, Gábor Boskovits, 2018/01/10
- Re: Meltdown / Spectre, Marius Bakke, 2018/01/11
- Re: Meltdown / Spectre, Pjotr Prins, 2018/01/15
- Re: Meltdown / Spectre, Mike Gerwitz, 2018/01/15
- Re: Meltdown / Spectre, Pjotr Prins, 2018/01/16
- Re: Meltdown / Spectre, Chris Marusich, 2018/01/12
Re: What do Meltdown and Spectre mean for libreboot x200 user?, Leah Rowe, 2018/01/10