Symantec has released the following detection for attempts to exploit the Multiple CPU Hardwares Information Disclosure Vulnerability (CVE-2017-5753/Spectre):

 

A series of newly discovered vulnerabilities affecting processor chips could permit attackers to gain unauthorized access to a computer’s memory. Dubbed Meltdown and Spectre, the vulnerabilities affect nearly all modern processors and can only be mitigated through operating system patches.

 

Of the two, Meltdown poses the greatest threat because it is easier to exploit and affects all kinds of computers, including personal computers and virtual machines in the cloud. Symantec is not aware of either vulnerability being exploited in the wild.

 

The vulnerabilities are significant, since a successful exploit could allow attackers to gain unauthorized access to sensitive data, including passwords. However, exploit of any vulnerable computer would require an attacker to gain access to the targeted computer via a prior step, such as running a malicious application on it; through JavaScript which triggers an exploit in order to run as native code; or running JavaScript to map the kernel. All of these malicious activities can be blocked by Symantec products. Nevertheless, users are advised to apply operating system patches as soon as they are made available.

 

Both Meltdown and Spectre exploit flaws in processors in order to bypass memory isolation in the operating system. Operating systems are designed in a way to block one application from accessing memory being used by another. If memory isolation fails to work, a malicious application could steal information from memory being used by other applications.

 

What is Meltdown?
Meltdown (CVE-2017-5754) exploits a flaw in out-of-order execution, a performance feature found in many modern processor chips. The researchers who discovered it have confirmed that it affects every Intel processor since 1995 (with the exception of pre-2013 Intel Itanium and Intel Atom processors). However, they added that it remains unclear whether ARM and AMD processors are also affected by the vulnerability.

 

If successfully exploited, an attacker can obtain a copy of the entire kernel address space, including any mapped physical memory, in other words, any data stored in memory at the time of the attack.

 

Meltdown can be exploited regardless of the operating system a computer is running. It affects both individual computers and any computers hosting cloud services, meaning an attack on a single server could lead to the compromise of multiple virtual machines running on that server.

 

Exploitation against cloud services is potentially the most worrying scenario, since the Meltdown can be exploited on a virtual machine in order to access memory from the host machine. Attackers could potentially buy space on a vulnerable cloud service and use it to stage an attack against other customers using the same host.

 

What is Spectre?
Spectre (CVE-2017-5753 and CVE-2017-5715) has a similar outcome but works in a slightly different way, and exploits a flaw in processor design to trick an application into leaking information stored in memory.

 

According to the team who discovered Spectre, virtually all modern processors are affected by the vulnerability, including Intel, AMD, and ARM chips. Once again, the vulnerability is operating system agnostic.

 

Mitigation
Users are advised to apply operating system patches immediately. Patches have already been released for Microsoft Windows, Apple macOS, and Linux to patch Meltdown. Spectre is reportedly more difficult to patch but also more difficult to exploit. Work is underway to harden software against any potential exploits.

 

Operating system vendors have already warned that patching is likely to have a performance impact on affected computers. According to Microsoft, the impact may not be noticeable on most consumer devices, however the specific impact “varies by hardware generation and implementation by the chip manufacturer.” The developers of the Linux patch said average performance could decline by 5 percent, but instances of a 30 percent decline were observed.


RECOMMENDED ARTICLE FOR TECHWORLD


 
Kaspersky Lab Report on DDoS Attacks in Q1 2017: The Lull before the Storm
Techworld Date Posted: 27 May 2017 2:55 PM | 309 Views
The first quarter of 2017 has confirmed the forecasts about the evolution of DDoS attacks made by Kaspersky Lab experts following the 2016 results. It also demonstrates that cybercriminals need a rest too. Despite the.... See More
 
Kaspersky Lab Report on DDoS Attacks in Q1 2017: The Lull before the Storm
Techworld Date Posted: 2:55 PM | 309 Views
The first quarter of 2017 has confirmed the forecasts about the evolution of DDoS attacks made by Kaspersky Lab experts following the 2016 results. It also demonstrates that cybercriminals need a rest too. Despite the...See More

 
Dragons, Zombies and Superheroes: Top TV Show Disguises Used to Spread Malware
Techworld Date Posted: 5 April 2019 10:20 AM | 114 Views
Cybercriminals are actively using new episodes of popular TV shows to distribute malware, research by Kaspersky Lab has found. Game of Thrones, The Walking Dead, and Arrow are the shows receiving the most attention.... See More
 
Dragons, Zombies and Superheroes: Top TV Show Disguises Used to Spread Malware
Techworld Date Posted: 10:20 AM | 114 Views
Cybercriminals are actively using new episodes of popular TV shows to distribute malware, research by Kaspersky Lab has found. Game of Thrones, The Walking Dead, and Arrow are the shows receiving the most attention...See More

 
Aruba Named as ‘Leader’ in Gartner’s Magic Quadrant and Tops All Six Use-Cases in Critical Capabilities Report
Techworld Date Posted: 21 November 2017 8:51 AM | 746 Views
For the first time ever, Aruba is positioned furthest overall in the ‘Leaders’ category in Gartner’s Magic Quadrant for Wired and Wireless LAN Access . See More
 
Aruba Named as ‘Leader’ in Gartner’s Magic Quadrant and Tops All Six Use-Cases in Critical Capabilities Report
Techworld Date Posted: 8:51 AM | 746 Views
For the first time ever, Aruba is positioned furthest overall in the ‘Leaders’ category in Gartner’s Magic Quadrant for Wired and Wireless LAN Access See More

 
Lenovo Bolsters PH Lineup with New AMD-Powered Devices
Techworld Date Posted: 6 December 2018 4:47 PM | 172 Views
Lenovo is refreshing its product offerings to Filipino customers with the launch of new laptops that run on AMD Ryzen processors. The release is part of the company’s objective of bringing the latest technology.... See More
 
Lenovo Bolsters PH Lineup with New AMD-Powered Devices
Techworld Date Posted: 4:47 PM | 172 Views
Lenovo is refreshing its product offerings to Filipino customers with the launch of new laptops that run on AMD Ryzen processors. The release is part of the company’s objective of bringing the latest technology...See More

 
ASUS Republic of Gamers Showcases Latest Gaming Lineup at CES 2018
Techworld Date Posted: 11 January 2018 1:23 PM | 863 Views
ASUS Republic of Gamers (ROG) today unveiled its latest lineup of gaming accessories at CES® 2018, including the ROG Strix Flare RGB mechanical keyboard, ROG Aura Terminal addressable RGB controller,. See More
 
ASUS Republic of Gamers Showcases Latest Gaming Lineup at CES 2018
Techworld Date Posted: 1:23 PM | 863 Views
ASUS Republic of Gamers (ROG) today unveiled its latest lineup of gaming accessories at CES® 2018, including the ROG Strix Flare RGB mechanical keyboard, ROG Aura Terminal addressable RGB controller,See More

 
Streaming Movie Baywatch (2017)
Techworld Date Posted: 16 September 2017 9:37 AM | 273 Views
Fast-paced, on-the-go, and with a crucial priority for high-speed connectivity, the world today has increasingly higher and higher demands for the best Internet performance-and your Small Office/Home Office (SOHO) environment is no exception. Powered.... See More
 
Streaming Movie Baywatch (2017)
Techworld Date Posted: 9:37 AM | 273 Views
Fast-paced, on-the-go, and with a crucial priority for high-speed connectivity, the world today has increasingly higher and higher demands for the best Internet performance-and your Small Office/Home Office (SOHO) environment is no exception. Powered...See More

 
Kaspersky Lab and DICT Ink MoU to Develop Public Sector Cybersecurity Capability
Techworld Date Posted: 30 October 2018 5:08 PM | 195 Views
DICT & Kaspersky Lab inks MoU. Present at the signing were (from left to right) Allan S. Cabanlong, Assistant Secetary, DICT; Eliseo M. Rio Jr., Acting Secretary, DICT; Stephan Neumeier, Managing Director, Kaspersky Lab.... See More
 
Kaspersky Lab and DICT Ink MoU to Develop Public Sector Cybersecurity Capability
Techworld Date Posted: 5:08 PM | 195 Views
DICT & Kaspersky Lab inks MoU. Present at the signing were (from left to right) Allan S. Cabanlong, Assistant Secetary, DICT; Eliseo M. Rio Jr., Acting Secretary, DICT; Stephan Neumeier, Managing Director, Kaspersky Lab...See More

Rafael Aquino
Lisa Su and the AMD Army
Techworld • By: Rafael Aquino | Date Posted: 7 August 2017 2:53 PM | 447 Views
Lisa Su, in sum, is the current CEO and president of Advanced Micro Devices (AMD). Her leadership has led the company to great heights, and without her ability, AMD might not be where it.... See More
Rafael Aquino
Lisa Su and the AMD Army
Techworld • By: Rafael Aquino | Date Posted: 2:53 PM | 447 Views
Lisa Su, in sum, is the current CEO and president of Advanced Micro Devices (AMD). Her leadership has led the company to great heights, and without her ability, AMD might not be where it...See More

Rafael Aquino
Intel® Meltdown And Spectre Updates
Techworld • By: Rafael Aquino | Date Posted: 14 March 2018 1:25 PM | 537 Views
Security vulnerabilities are everywhere, but lately, a new pair is on the loose. Intel® just received massive updates late February 2018 to early March for all processors that are currently in circulation. . See More
Rafael Aquino
Intel® Meltdown And Spectre Updates
Techworld • By: Rafael Aquino | Date Posted: 1:25 PM | 537 Views
Security vulnerabilities are everywhere, but lately, a new pair is on the loose. Intel® just received massive updates late February 2018 to early March for all processors that are currently in circulation. See More

 
Notes on Intel®’s Tick-Tock Model
Techworld Date Posted: 30 March 2017 10:59 AM | 363 Views
Though Intel has scrapped the previous “Tick-Tock” CPU production model, it is still good to note how well it has gone through the years.. See More
 
Notes on Intel®’s Tick-Tock Model
Techworld Date Posted: 10:59 AM | 363 Views
Though Intel has scrapped the previous “Tick-Tock” CPU production model, it is still good to note how well it has gone through the years.See More


Power by

Download Free AZ | Free Wordpress Themes