US-CERT warns of Intel CPU flaw

A flaw in Intel chips leaves users of a number or x64-based operating systems vulnerable to system hijacking, the US Computer Emergency Readiness Team warns.

“Some 64-bit operating systems and virtualization software running on Intel CPU hardware are vulnerable to a local privilege escalation attack. The vulnerability may be exploited for local privilege escalation or a guest-to-host virtual machine escape,” they explained in a recently released advisory.

Among the systems affected are the 64-bit version of Windows 7 and Windows Server 2008 R2, as well as FreeBSD, NetBSD, RedHat, and a host of systems employing the Xen hypervisor.

VMware’s virtualization software is not affected, and neither are AMD’s processors, as they do not use the SYSRET instruction whose incorrect handling causes the flaw or handle it differently.

Many of the affected vendors have already pushed out an update that defuses the flaw.

Microsoft did it and warned about it during this month’s Patch Tuesday, and pointed out that the vulnerability can be exploited only locally, and by an attacker that has valid logon credentials.




Share this