Hacker Finds Hidden “God Mode” on Old x86 CPUs

Discussion in '[H]ard|OCP Front Page News' started by Megalith, Aug 12, 2018.

  1. Megalith

    Megalith 24-bit/48kHz Staff Member

    Messages:
    12,569
    Joined:
    Aug 20, 2006
    At this week’s Black Hat conference, security researcher Christopher Domas demonstrated a so-called “God Mode” affecting certain x86 CPUs – namely, VIA’s C3 Nehemiah chips, an off-brand “military-grade” processor made in 2003. To achieve root access and the innermost ring, all the user needs to do is enter the command “.byte 0x0f, 0x3f” in Linux. Domas believes the same backdoors exist on other chipsets.

    The backdoor completely breaks the protection-ring model of operating-system security, in which the OS kernel runs in ring 0, device drivers run in rings 1 and 2, and user applications and interfaces ("userland") run in ring 3, furthest from the kernel and with the least privileges. To put it simply, Domas' God Mode takes you from the outermost to the innermost ring in four bytes. "We have direct ring 3 to ring 0 hardware privilege escalation," Domas said. "This has never been done."
     
  2. Meeho

    Meeho 2[H]4U

    Messages:
    3,962
    Joined:
    Aug 16, 2010
    Welcome to Intel ME.
     
    Stimpy88 and Baenwort like this.
  3. socK

    socK 2[H]4U

    Messages:
    3,580
    Joined:
    Jan 25, 2004
    This is not the same
     
    PaulP, SvenBent and auntjemima like this.
  4. Uvaman2

    Uvaman2 2[H]4U

    Messages:
    2,475
    Joined:
    Jan 4, 2016
    If this shit, and other similar sounding shit are not backdoors, just what is it then?
     
    Stimpy88 likes this.
  5. socK

    socK 2[H]4U

    Messages:
    3,580
    Joined:
    Jan 25, 2004
    Let me rephrase.

    The article literally says, as per the researcher, that this is more extreme in the sense that it has even more control.
     
  6. iNViSiGOD

    iNViSiGOD Gawd

    Messages:
    586
    Joined:
    Apr 16, 2002
    New Game ME+
     
    Viper16 likes this.
  7. velusip

    velusip [H]ard|Gawd

    Messages:
    1,371
    Joined:
    Jan 24, 2005
    It's like a zero-thought/concern precursor to PSP/IME. Either way, they're all stupid and exploitable proprietary hacks to implement features which can otherwise be done with any GNU kernel.
     
    Baenwort likes this.
  8. bobdabilder

    bobdabilder Limp Gawd

    Messages:
    189
    Joined:
    Oct 7, 2009
    You're cpu'ing it wrong!
     
  9. Meeho

    Meeho 2[H]4U

    Messages:
    3,962
    Joined:
    Aug 16, 2010
    It is pretty similar. The lowest level access security risk.
     
  10. Kibagami

    Kibagami Limp Gawd

    Messages:
    333
    Joined:
    Jul 26, 2004
    "Mister Potato Head! MISTER POTATO HEAD!! Back doors are not secrets!"
     
  11. Red Falcon

    Red Falcon [H]ardForum Junkie

    Messages:
    9,742
    Joined:
    May 7, 2007
    "It's not a bug. It's a feature."
    Uh huh...
     
    knowom likes this.
  12. knowom

    knowom Limp Gawd

    Messages:
    311
    Joined:
    Aug 15, 2008
    Nothing is truly secure in the hands of the wrong person or people unfortunately.
     
  13. Stimpy88

    Stimpy88 [H]ard|Gawd

    Messages:
    1,154
    Joined:
    Feb 18, 2004
    This is what happens when you let governments dictate how your product should fit in with their spying concerns...
     
    knowom likes this.
  14. Meeho

    Meeho 2[H]4U

    Messages:
    3,962
    Joined:
    Aug 16, 2010
    There's a difference, though, in having a flawed lock and leaving your door wide open.
     
  15. trudude

    trudude [H]ard|Gawd

    Messages:
    1,649
    Joined:
    Jul 17, 2003
    You would be a fool to think these don't exist on every major manufacturer's devices/appliances. The ones that don't have these backdoors are devices owned by the 3 letter agencies and their corporate backers that have had their firmware and their OS's patched to remove the vulnerabilities. Like I have told you on this forum many times before. The backdoors are installed on purpose because corporate connected government agencies use the backdoors in order to steal corporate secrets from their competition.
     
    knowom likes this.
  16. Meeho

    Meeho 2[H]4U

    Messages:
    3,962
    Joined:
    Aug 16, 2010