EVGA

New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protected

Author
rjohnson11
EVGA Forum Moderator
  • Total Posts : 82553
  • Reward points : 0
  • Joined: 2004/10/05 12:44:35
  • Location: Scotland, UK
  • Status: offline
  • Ribbons : 73
2019/12/10 23:33:43 (permalink)
https://www.techpowerup.com/262024/new-plundervolt-intel-cpu-vulnerability-exploits-vcore-to-fault-sgx-and-steal-protected-data
 
A group of cybersecurity researchers have discovered a new security vulnerability affecting Intel processors, which they've craftily named "Plundervolt," a portmanteau of the words "plunder" and "undervolt." Chronicled under CVE-2019-11157, it was first reported to Intel in June 2019 under its security bug-bounty programme, so it could secretly develop a mitigation. With the 6-month NDA lapsing, the researchers released their findings to the public. Plundervolt is described by researchers as a way to compromise SGX (software guard extensions) protected memory by undervolting the processor when executing protected computations, to a level where SGX memory-encryption no longer protects data. The researchers have also published proof-of-concept code.

Plundervolt is different from "Rowhammer," in that it flips bits inside the processor, before they're written to the memory, so SGX doesn't protect them. Rowhammer doesn't work with SGX-protected memory. Plundervolt requires root privileges as software that let you tweak vCore require ring-0 access. You don't need direct physical access to the target machine, as tweaking software can also be remotely run. Intel put out security advisory SA-00298 and is working with motherboard vendors and OEMs to release BIOS updates that pack a new microcode with a mititagion against this vulnerability. 
 
Looks like Intel has a lot of security work ahead of them

AMD Ryzen 9 5950X,  Corsair Mp600 Pro M.2 2TB, 128GB DDR4  Crosshair VIII Hero, Asus RX 6900 XT Associate Code: H5U80QBH6BH0AXF

#1

13 Replies Related Threads

    Cool GTX
    EVGA Forum Moderator
    • Total Posts : 26005
    • Reward points : 0
    • Joined: 2010/12/12 14:22:25
    • Location: Folding for the Greater Good
    • Status: offline
    • Ribbons : 119
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/11 10:35:29 (permalink)
    Intel SA-00298
     
    "Plundervolt requires root privileges as software that let you tweak vCore require ring-0 access"
     
    just another shrimp on the barbie
     

    RTX Project EVGA X99 FTWK 2xEVGA2080Ti EVGA1200P2  Nibbler EVGA X99 Classified 3-GPU Water cooled 1600P2 AIO Folding  X99 2x1080Ti FTW3 Hybrid, 1200P
    Thank You for Your Support      I'm a Volunteer Moderator on the EVGA Forums ... Not an EVGA employee

    #2
    AuDioFreaK39
    FTW Member
    • Total Posts : 1692
    • Reward points : 0
    • Joined: 2007/06/04 15:53:59
    • Location: Orange County, CA
    • Status: offline
    • Ribbons : 12
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/13 11:52:59 (permalink)
    Does this vulnerability indicate that software-based overclocking will now become a thing of the past as it poses a security risk?

    It took EVGA a few months in 2018 to release BIOS patches for Spectre/Meltdown (CVE- 2017-5753 / CVE- 2017-5715 / CVE- 2017-5754). The CVEs were published in January 2018 and while the EVGA X299 got patched on January 12th (BIOS 1.06), the Z270 and Z370 didn’t get patched until March 26th (BIOS 1.07/1.08), and the X99 didn’t get patched until April 16th (BIOS 2.06).
    #3
    bill1024
    Omnipotent Enthusiast
    • Total Posts : 8356
    • Reward points : 0
    • Joined: 2008/10/18 01:01:10
    • Status: offline
    • Ribbons : 50
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/13 12:23:56 (permalink)
    So if they need, and have root privilege to do this, is it not a little bit too late anyway?
    Seems like a nonissue to me.

     Life is too short to carry a cheap pocket knife

     U25ITA93JV   
     
    #4
    MadmanRB
    iCX Member
    • Total Posts : 334
    • Reward points : 0
    • Joined: 2018/11/28 16:43:21
    • Location: Here
    • Status: offline
    • Ribbons : 1
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/13 20:02:31 (permalink)
    Its still not good for servers and such.
     
    Put another point for team red down, ouch.
    post edited by MadmanRB - 2019/12/13 20:04:34


    #5
    kougar
    CLASSIFIED Member
    • Total Posts : 2720
    • Reward points : 0
    • Joined: 2006/05/08 10:11:19
    • Location: Texas
    • Status: offline
    • Ribbons : 16
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/14 03:29:28 (permalink)
    I hate this exploit, solely because it validates all those TV show/movie tropes where adding more power miraculously fixes or hacks stuff. Star Trek correctly predicting the future once again!


    Have water, will cool. 
     
    Don't forget to use an Associate Code at checkout for extra savings! Associate Code: FWBXGF17CKOMCIV
    #6
    vegajf51
    SSC Member
    • Total Posts : 553
    • Reward points : 0
    • Joined: 2018/01/07 12:53:12
    • Status: offline
    • Ribbons : 1
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/14 07:11:41 (permalink)
    kougar
    I hate this exploit, solely because it validates all those TV show/movie tropes where adding more power miraculously fixes or hacks stuff. Star Trek correctly predicting the future once again!


     LOL, so true! 
    #7
    CraptacularOne
    Omnipotent Enthusiast
    • Total Posts : 13462
    • Reward points : 0
    • Joined: 2006/06/12 17:20:44
    • Location: Florida
    • Status: online
    • Ribbons : 186
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/14 08:18:50 (permalink)
    Sure a lot of these things may not be the best for server farms or such. But for the average person they are irrelevant. If someone already has this level access to your PC you have much bigger problems anyway. 

    i7 11700K @5Ghz H2O.........................Ryzen 9 5900X H2O
    PNY XLR8 RTX 3090 H2O......................Sapphire RX 6900XT Nitro+
    Viotek SUW49C 32:9 Ultra Wide............Oculus Rift S
    MSI MPG Z590 Gaming Edge WiFi..........ASUS TUF Gaming X570 WiFi
    32GB Dominator Platinum 4000Mhz.......32GB TForce Xtreem 3600Mhz
    EVGA G3 SuperNova 1000w..................EVGA G3 SuperNova 750w
    #8
    vegajf51
    SSC Member
    • Total Posts : 553
    • Reward points : 0
    • Joined: 2018/01/07 12:53:12
    • Status: offline
    • Ribbons : 1
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/14 08:48:07 (permalink)
    CraptacularOne
    Sure a lot of these things may not be the best for server farms or such. But for the average person they are irrelevant. If someone already has this level access to your PC you have much bigger problems anyway. 




    While I 100% agree the issue for us consumers is the patch's they must deploy. The patch's usually carry some sort of performance hit which in turn affects us average consumers.
    #9
    howdyho1
    Superclocked Member
    • Total Posts : 248
    • Reward points : 0
    • Joined: 2009/12/01 11:28:11
    • Location: near the mountains
    • Status: offline
    • Ribbons : 1
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/14 08:56:45 (permalink)
    Regarding Spectre/Meltdown patches. That timeline was a function of when Intel released microcode updates. Older processors were later in the schedule.


    i9-7900X | Asus ROG STRIX X299E | WIP cooling | EVGA SuperNOVA 1600 P2 | 32G Trident Z 4133Ghz Quad DDR4 | 2x Samsung 970 EVO 2TB NVME | 2x 4TB WD Black | DG-87 | 3x LG 27" 4k | 2-way SLI EVGA Titan Black SC  | Corsair K95 RGB Platinum | Steelseries Rival 600 
     
    Heatware: https://www.heatware.com/u/96922/to
     
    #10
    ty_ger07
    Insert Custom Title Here
    • Total Posts : 18246
    • Reward points : 0
    • Joined: 2008/04/10 23:48:15
    • Location: traveler
    • Status: offline
    • Ribbons : 199
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/14 09:11:06 (permalink)
    Keep in mind that Intel's 10xxx series CPUs are slower than their 9xxx series CPUs due to in-silicon vulnerability mitigation.  This confirms the concern of the trickle-down effect affecting consumers and enthusiasts years later.  As AuDioFreaK39 said, does this indicate that overclocking support on Intel's CPUs could be affected in the future?
    #11
    z999z3mystorys
    CLASSIFIED Member
    • Total Posts : 4366
    • Reward points : 0
    • Joined: 2008/11/29 06:46:22
    • Location: at my current location
    • Status: online
    • Ribbons : 19
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/14 12:55:08 (permalink)
    another exploit, just Plunderful... er wonderful.


     
     
    #12
    GTXJackBauer
    Omnipotent Enthusiast
    • Total Posts : 9366
    • Reward points : 0
    • Joined: 2010/04/19 22:23:25
    • Location: (EVGA Discount) Associate Code : LMD3DNZM9LGK8GJ
    • Status: offline
    • Ribbons : 45
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/15 01:06:59 (permalink)
    z999z3mystorys
    another exploit, just Plunderful... er wonderful.




    Good one.    

     Use this Associate Code at your checkouts or follow these instructions for Up to 10% OFF on all your EVGA purchases:
    LMD3DNZM9LGK8GJ
    #13
    kougar
    CLASSIFIED Member
    • Total Posts : 2720
    • Reward points : 0
    • Joined: 2006/05/08 10:11:19
    • Location: Texas
    • Status: offline
    • Ribbons : 16
    Re: New "Plundervolt" Intel CPU Vulnerability Exploits vCore to Fault SGX and Steal Protec 2019/12/16 01:38:44 (permalink)
    Considering Intel's fix was to lock voltages, I would tend to guess it would have repercussions on overclocking consumer chips. Even the 9900's support SGX, so by definition they would need the hotfixes too. 


    Have water, will cool. 
     
    Don't forget to use an Associate Code at checkout for extra savings! Associate Code: FWBXGF17CKOMCIV
    #14
    Jump to:
  • Back to Mobile