Symantec has released the following detection for attempts to exploit the Multiple CPU Hardwares Information Disclosure Vulnerability (CVE-2017-5753/Spectre):

 

A series of newly discovered vulnerabilities affecting processor chips could permit attackers to gain unauthorized access to a computer’s memory. Dubbed Meltdown and Spectre, the vulnerabilities affect nearly all modern processors and can only be mitigated through operating system patches.

 

Of the two, Meltdown poses the greatest threat because it is easier to exploit and affects all kinds of computers, including personal computers and virtual machines in the cloud. Symantec is not aware of either vulnerability being exploited in the wild.

 

The vulnerabilities are significant, since a successful exploit could allow attackers to gain unauthorized access to sensitive data, including passwords. However, exploit of any vulnerable computer would require an attacker to gain access to the targeted computer via a prior step, such as running a malicious application on it; through JavaScript which triggers an exploit in order to run as native code; or running JavaScript to map the kernel. All of these malicious activities can be blocked by Symantec products. Nevertheless, users are advised to apply operating system patches as soon as they are made available.

 

Both Meltdown and Spectre exploit flaws in processors in order to bypass memory isolation in the operating system. Operating systems are designed in a way to block one application from accessing memory being used by another. If memory isolation fails to work, a malicious application could steal information from memory being used by other applications.

 

What is Meltdown?
Meltdown (CVE-2017-5754) exploits a flaw in out-of-order execution, a performance feature found in many modern processor chips. The researchers who discovered it have confirmed that it affects every Intel processor since 1995 (with the exception of pre-2013 Intel Itanium and Intel Atom processors). However, they added that it remains unclear whether ARM and AMD processors are also affected by the vulnerability.

 

If successfully exploited, an attacker can obtain a copy of the entire kernel address space, including any mapped physical memory, in other words, any data stored in memory at the time of the attack.

 

Meltdown can be exploited regardless of the operating system a computer is running. It affects both individual computers and any computers hosting cloud services, meaning an attack on a single server could lead to the compromise of multiple virtual machines running on that server.

 

Exploitation against cloud services is potentially the most worrying scenario, since the Meltdown can be exploited on a virtual machine in order to access memory from the host machine. Attackers could potentially buy space on a vulnerable cloud service and use it to stage an attack against other customers using the same host.

 

What is Spectre?
Spectre (CVE-2017-5753 and CVE-2017-5715) has a similar outcome but works in a slightly different way, and exploits a flaw in processor design to trick an application into leaking information stored in memory.

 

According to the team who discovered Spectre, virtually all modern processors are affected by the vulnerability, including Intel, AMD, and ARM chips. Once again, the vulnerability is operating system agnostic.

 

Mitigation
Users are advised to apply operating system patches immediately. Patches have already been released for Microsoft Windows, Apple macOS, and Linux to patch Meltdown. Spectre is reportedly more difficult to patch but also more difficult to exploit. Work is underway to harden software against any potential exploits.

 

Operating system vendors have already warned that patching is likely to have a performance impact on affected computers. According to Microsoft, the impact may not be noticeable on most consumer devices, however the specific impact “varies by hardware generation and implementation by the chip manufacturer.” The developers of the Linux patch said average performance could decline by 5 percent, but instances of a 30 percent decline were observed.


RECOMMENDED ARTICLE FOR TECHWORLD


 
Vertiv Completes Transformation; Celebrates in Manila
Techworld Date Posted: 23 September 2017 11:26 AM | 409 Views
Vertiv regional headquarters and market unit office in the Philippines recently held a "Day One" welcoming event for its employees, culminating the transition from Emerson Network Power, acquired by US-based Platinum Equity for $4.... See More
 
Vertiv Completes Transformation; Celebrates in Manila
Techworld Date Posted: 11:26 AM | 409 Views
Vertiv regional headquarters and market unit office in the Philippines recently held a "Day One" welcoming event for its employees, culminating the transition from Emerson Network Power, acquired by US-based Platinum Equity for $4...See More

 
Fortinet Continues Commitment to Close the Cyber Skills Gap though Its NSE Institute Training and Certification Program
Techworld Date Posted: 11 May 2019 11:09 AM | 19 Views
Fortinet® (NASDAQ: FTNT), a global leader in broad, integrated and automated cybersecurity solutions, has continued to lead the way on training and education in the company’s ongoing efforts to close the cyber security skills.... See More
 
Fortinet Continues Commitment to Close the Cyber Skills Gap though Its NSE Institute Training and Certification Program
Techworld Date Posted: 11:09 AM | 19 Views
Fortinet® (NASDAQ: FTNT), a global leader in broad, integrated and automated cybersecurity solutions, has continued to lead the way on training and education in the company’s ongoing efforts to close the cyber security skills...See More

 
Attacks Leveraging Exploits for Microsoft Office Grew Fourfold in Early 2018
Techworld Date Posted: 28 May 2018 4:13 PM | 21 Views
Exploits, software that takes advantage of a bug or vulnerability, for Microsoft Office in-the-wild hit the list of cyber headaches in Q1 2018. Overall, the number of users attacked with malicious Office documents rose.... See More
 
Attacks Leveraging Exploits for Microsoft Office Grew Fourfold in Early 2018
Techworld Date Posted: 4:13 PM | 21 Views
Exploits, software that takes advantage of a bug or vulnerability, for Microsoft Office in-the-wild hit the list of cyber headaches in Q1 2018. Overall, the number of users attacked with malicious Office documents rose...See More

 
Alibaba Cloud Extends Integration with the Fortinet Security Fabric to Secure Cloud Migration
Techworld Date Posted: 2 August 2019 6:14 PM | 70 Views
Alibaba Cloud Extends Integration with the Fortinet Security Fabric to Secure Cloud Migration. See More
 
Alibaba Cloud Extends Integration with the Fortinet Security Fabric to Secure Cloud Migration
Techworld Date Posted: 6:14 PM | 70 Views
Alibaba Cloud Extends Integration with the Fortinet Security Fabric to Secure Cloud MigrationSee More

 
PLDT Introduces a New Era of Home Broadband with All-New Google Wifi Plans
Techworld Date Posted: 4 January 2019 3:53 PM | 45 Views
Leading digital services provider PLDT is ushering in a new era of home broadband as it introduces the new PLDT Home Google Wifi Plans, which lets you enjoy Unli Fibr in every room and.... See More
 
PLDT Introduces a New Era of Home Broadband with All-New Google Wifi Plans
Techworld Date Posted: 3:53 PM | 45 Views
Leading digital services provider PLDT is ushering in a new era of home broadband as it introduces the new PLDT Home Google Wifi Plans, which lets you enjoy Unli Fibr in every room and...See More

 
Next Generation of Kaspersky Private Security Network: Extensive Threat Intelligence within the Network Walls
Techworld Date Posted: 12 September 2017 1:24 PM | 425 Views
Kaspersky Lab is introducing its next generation of Kaspersky Private Security Network, a private version of Kaspersky Security Network that allows enterprises to boost their detection speed with access to real-time global threat intelligence.... See More
 
Next Generation of Kaspersky Private Security Network: Extensive Threat Intelligence within the Network Walls
Techworld Date Posted: 1:24 PM | 425 Views
Kaspersky Lab is introducing its next generation of Kaspersky Private Security Network, a private version of Kaspersky Security Network that allows enterprises to boost their detection speed with access to real-time global threat intelligence...See More

 
Kaspersky Lab Industrial Cybersecurity Conference 2018 Call for Papers
Techworld Date Posted: 3 May 2018 3:42 PM | 23 Views
The growing interconnectedness of IT and operational technology (OT) systems raises new security challenges and requires the transformation of both protection technologies and the mindsets of board members, engineers and IT security teams. . See More
 
Kaspersky Lab Industrial Cybersecurity Conference 2018 Call for Papers
Techworld Date Posted: 3:42 PM | 23 Views
The growing interconnectedness of IT and operational technology (OT) systems raises new security challenges and requires the transformation of both protection technologies and the mindsets of board members, engineers and IT security teams. See More

 
Swinging by the Spider-Man: Far From Home Movie Screenings with Philips Monitors
Techworld Date Posted: 6 July 2019 4:12 PM | 41 Views
Swinging by the Spider-Man: Far From Home Movie Screenings with Philips Monitors. See More
 
Swinging by the Spider-Man: Far From Home Movie Screenings with Philips Monitors
Techworld Date Posted: 4:12 PM | 41 Views
Swinging by the Spider-Man: Far From Home Movie Screenings with Philips MonitorsSee More

 
Costly Cloud Breaches Putting Digital Transformation Strategies at Risk, Finds Kaspersky Lab
Techworld Date Posted: 25 May 2018 2:51 PM | 20 Views
The success of digital transformation projects are being stalled by the fear of the impact and rising costs of breaches associated with “data on the go”. According to new research from Kaspersky Lab, safeguarding.... See More
 
Costly Cloud Breaches Putting Digital Transformation Strategies at Risk, Finds Kaspersky Lab
Techworld Date Posted: 2:51 PM | 20 Views
The success of digital transformation projects are being stalled by the fear of the impact and rising costs of breaches associated with “data on the go”. According to new research from Kaspersky Lab, safeguarding...See More

 
Smart Unveils Offers for the Groundbreaking Samsung Galaxy S10 Line
Techworld Date Posted: 28 February 2019 2:25 PM | 32 Views
Following the official launch of the Samsung Galaxy S10 line in San Francisco, Smart Communications, Inc., the wireless arm of leading telco and digital services provider PLDT Inc., has revealed its offers for the.... See More
 
Smart Unveils Offers for the Groundbreaking Samsung Galaxy S10 Line
Techworld Date Posted: 2:25 PM | 32 Views
Following the official launch of the Samsung Galaxy S10 line in San Francisco, Smart Communications, Inc., the wireless arm of leading telco and digital services provider PLDT Inc., has revealed its offers for the...See More


Power by

Download Free AZ | Free Wordpress Themes