Explore a technical conference presentation that reveals a critical CPU design flaw in AMD processors affecting System Management Mode (SMM), one of the x86 architecture's most privileged execution modes. Gain deep insights into how SMM operates beyond the reach of hypervisors, OS protections, anti-cheat engines, and anti-virus systems. Learn about a previously undiscovered silicon-level vulnerability that has persisted for nearly two decades, compromising the security mechanisms meant to protect SMM. Follow along as the speakers break down the complete methodology and engineering process used to develop a universal ring -2 privilege escalation exploit, demonstrating how this architectural weakness can be leveraged to bypass critical security controls. Understand the implications of this discovery within the context of BIOS ecosystem vulnerabilities and the ongoing challenges in firmware security, despite vendors' improved patching responses.
Overview
Syllabus
AMD Sinkclose: Universal Ring -2 Privilege Escalation - Enrique Nissim y Krzystof Okupski
Taught by
Ekoparty Security Conference