Explore a technical conference talk that delves into a critical CPU vulnerability discovered in AMD processors affecting System Management Mode (SMM). Learn about the fundamentals of SMM, one of the x86 architecture's most powerful execution modes that operates invisibly to Hypervisors, OS-level protections, anti-cheat engines, and anti-virus systems. Understand how a previously undetected silicon-level flaw in AMD's SMM security mechanisms remained hidden for nearly two decades. Follow along as the speakers break down the complete methodology and engineering process used to develop a universal ring -2 privilege escalation exploit, demonstrating the significant implications of this CPU design flaw for system security.
Overview
Syllabus
DEF CON 32 - AMD Sinkclose-Universal Ring2 Privilege Escalation - Enrique Nissim, Krzysztof Okupski
Taught by
DEFCONConference