Comments on: The Intel SYSRET privilege escalation

By: Intel Processor SYSRET Vulnerability Affecting Some 64-Bit Systems | Threatpost

Mon, 25 Mar 2013 04:11:18 +0000

[...] Microsoft Windows 7, FreeBSD, NetBSD and there’s a chance Apple’s OS X may also be vulnerable, according to a blog on Xen.org, an open source community for users of the virtual [...]

By: Intel Sysret 本地提权漏洞在WIN7 X64下的实现分析 « 360安全卫士技术博客

Intel Sysret 本地提权漏洞在WIN7 X64下的实现分析 « 360安全卫士技术博客 — Tue, 04 Dec 2012 07:47:45 +0000

[...] 博客小编说：自从今年上半年Intel CPU的sysret指令导致的本地提权漏洞（CVE-2012-0217）被批露之后，这个跨操作系统平台的漏洞就引起了业界的强烈关注，从我们作安全研究角度来说，这个漏洞是足以写入教科书的。xen对于这个漏洞的分析比较完整，后来 VUPEN 放出了这个漏洞在win7 x64平台上的利用分析。 [...]

By: Windows 7 Privilege Escelation & UAC Bypass Guide with SYSRET exploit

Windows 7 Privilege Escelation & UAC Bypass Guide with SYSRET exploit — Wed, 28 Nov 2012 22:28:18 +0000

[...] The Sysret exploit is made possible due to a subtle difference in the way in which Intel processors implement error handling in their version of AMD’s SYSRET instruction. The SYSRET instruction is part of the x86-64 standard defined by AMD. If an operating system is written according to AMD’s spec, but run on Intel hardware, the difference in implementation can be exploited by an attacker to write to arbitrary addresses in the operating system’s memory. Click here for a more detailed description of the Sysret Exploit. [...]

By: Winners Pwnie Awards 2012

Winners Pwnie Awards 2012 — Thu, 26 Jul 2012 20:13:08 +0000

[...] vulnerability uses SYSRET instructions for increasing privileges. Some Other OS is also vulnerable to this [...]

By: US-CERT Vulnerability Note VU#649219 – SYSRET 64 - cert

US-CERT Vulnerability Note VU#649219 – SYSRET 64 - cert — Thu, 05 Jul 2012 07:43:41 +0000

[...] http://blog.xen.org/index.php/2012/06/13/the-intel-sysret-privilege-escalation/ [...]

By: US-CERT: lỗi nguy hiểm trong chip xử lý Intel | Tin tức Việt Nam trong ngày | Tin tức việt Nam và thế giới

Sat, 23 Jun 2012 16:11:30 +0000

[...] Lỗ hổng bảo mật này xuất phát từ cách mà các CPU thực hiện xử lý lỗi trong phiên bản của các hướng dẫn SYSRET, vốn là một phần của tiêu chuẩn x84-64 được định nghĩa bởi AMD (Advanced Micro Devices). Hiểu đơn giản, nếu một hệ điều hành được xây dựng dựa theo các tiêu chuẩn của AMD nhưng lại chạy trên phần cứng của Intel, sự khác biệt trong quá trình triển khai hệ thống có thể bị khai thác. Chi tiết về lỗi có thể tham khảo từ website của Xen. [...]

By: US-CERT: lỗi nguy hiểm trong chip xử lý Intel | CuocSongSo

US-CERT: lỗi nguy hiểm trong chip xử lý Intel | CuocSongSo — Fri, 22 Jun 2012 03:31:14 +0000

By: US-CERT แจ้งเตือนช่องโหว่ด้านความปลอดภัยบนซีพียูแบบ x64 ของ Intel | PantipGuide.com

Wed, 20 Jun 2012 11:40:14 +0000

[...] (MS12-042) FreeBSD และ Xen [...]

By: Intel: virtualisatielek is geen gat maar een functie | Tech-nieuws

Intel: virtualisatielek is geen gat maar een functie | Tech-nieuws — Wed, 20 Jun 2012 07:35:05 +0000

[...] Hat, Suse naast de besturingssystemen FreeBSD en NetBSD plus de open source-virtualisatiesoftware Xen en het cloud-OS van [...]

By: 1081009 | US-CERT แจ้งเตือนช่องโหว่ด้านความปลอดภัยบนซีพียูแบบ x64 ของ Intel | ร้อยแปดพันเก้า.com

Wed, 20 Jun 2012 06:52:10 +0000

[...] (MS12-042) FreeBSD และ Xen [...]