OS Vendors Releasing Patches after Intel Doc’s Misinterpretation

Windows Articles

Trisquel 9.0 available

Trisquel is a GNU/Linux distribution endorsed and supported by the Free Software Foundation. This means that in addition to incorporating the Linux...

How to install PandoraFMS on CentOS 8?

Worldwide many IT infrastructures are running Linux on one of their servers. This opens the door to an endless number of different...

How to force close a program using PowerShell

Hi! We have mentioned in the past that Windows allows you to open multiple programs at once. In fact, that is one...

How to install the Owncloud desktop client Ubuntu 20.04?

In this post, You will learn how to install the Owncloud desktop client on Ubuntu 20.04. Many users and...

How to finish a task and force to close a program in Windows 10

Hello! We use numerous applications in Windows 10 on a daily basis. However, these programs can fail and crash. That is, it...
Mel Khamlichi
Mel Khamlichihttp://www.osradar.com
Founder of Osradar, from Amsterdam Netherlands

For all along, there was a hidden vulnerability in the official system APIs! Due to misinterpretation of Intel’s documentation for the Intel x86-x64 platform. Using this vulnerability, official APIs would allow a hacker to legitimately get into the control of a system. Thankfully, all the infected systems have released a patch for the vulnerability.

The flaw

The vulnerability was due to the wrong implementation of hardware debug mechanism in Intel x86-x64 architectures. To be more precise, it was within MOV SS and POP SS instructions that caused the ruckus.

The working procedure would be too much of a complex topic in this case, but long story short – the vulnerability allowed kernel Ring 0 data available to the OS components running in the Ring 3. Thus, utilizing operating system APIs, a hacker could gain access to the sensitive memory data from the kernel. With such power, it’s possible to control low-level operating system functions and ultimately, take over the system.

This issue has also made its way into different virtualization software like Xen and VMware.

OS vendor coordination for patch

This time, operating systems have made a joint effort in patching up this vulnerability. This led to the release of the patch almost at the same time for every operating system – Windows, Linux (Ubuntu, SUSE Linux, Red Hat, and FreeBSD etc.), and Apple.

This is quite nice to see every vendor coming altogether to solve issues, unlike the jumbled and messed up the process for Meltdown and Spectre mitigation patches.

Reason for the vulnerability

The reason for this vulnerability was because of the improper documentation of Intel. It’s marked as CVE-2018-8897 and fortunately, not exploitable remotely. The attacker needs an already infected system for running the codes for exploiting this flaw.

According to Nick Peterson of Everdox Tech, LLC who identified the flaw blames the incomplete documentation. Peterson and the CERT/CC team also makes it clear that all the OS made the mistake in the same pattern relating to the MOV SS and POP SS instructions.

How to stay secured

In order to stay secure, you have to make sure that your system is up-to-date. You have to update your operating system right now. Moreover, stay safe from any possible malware threats.

More articles

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Latest article

Trisquel 9.0 available

Trisquel is a GNU/Linux distribution endorsed and supported by the Free Software Foundation. This means that in addition to incorporating the Linux...

How to install PandoraFMS on CentOS 8?

Worldwide many IT infrastructures are running Linux on one of their servers. This opens the door to an endless number of different...

How to force close a program using PowerShell

Hi! We have mentioned in the past that Windows allows you to open multiple programs at once. In fact, that is one...

How to install the Owncloud desktop client Ubuntu 20.04?

In this post, You will learn how to install the Owncloud desktop client on Ubuntu 20.04. Many users and...

How to finish a task and force to close a program in Windows 10

Hello! We use numerous applications in Windows 10 on a daily basis. However, these programs can fail and crash. That is, it...
x