[Secure-testing-team] how to handle SMM attacks?
Michael S. Gilbert
michael.s.gilbert at gmail.com
Mon Aug 10 04:37:04 UTC 2009
any thoughts on how to address SMM (System Management Mode) attacks?
this code resides in the vulnerable motherboard's bioses, and hence
outside of the os.
this is, in a sense, more of a free software issue. it is a part of
your computer that you do not have control over.
maybe a statement recommending non-usage of vulnerable boards would be
warranted?
mike
[0] http://www.securityfocus.com/archive/1/505590/30/0/threaded
[1] http://www.phrack.org/issues.html?issue=66&id=11#article
More information about the Secure-testing-team
mailing list