Protected Virtual Machines Exposed to New 'CacheWarp' AMD CPU Attack
Briefly

from SecurityWeek10 months ago
CacheWarp, the attack method, can allow hackers to hijack control flow, break into an encrypted VM, and escalate privileges.
SecurityWeekhttps://www.securityweek.com/protected-virtual-machines-exposed-to-new-cachewarp-amd-cpu-attack/
For a simple example, assume you have a variable determining whether a user is successfully authenticated. By exploiting CacheWarp, an attacker can revert the variable to a previous state and thus take over an old (already authenticated) session. Furthermore, an attacker can manipulate the return address stored on the stack and, by that, change the control flow of a victim program.
SecurityWeekhttps://www.securityweek.com/protected-virtual-machines-exposed-to-new-cachewarp-amd-cpu-attack/
CacheWarp is described as a software-based fault injection attack that exploits a hardware issue in AMD CPUs. It is not a transient-execution or side-channel attack, but a result of an architectural bug.
SecurityWeekhttps://www.securityweek.com/protected-virtual-machines-exposed-to-new-cachewarp-amd-cpu-attack/
Read at SecurityWeek
#Security #AMD processors #Virtual machines #CacheWarp attack #Hijacking control flow
[
]
[
|
]