*waits for breathless press coverage of Netspectre*
-
Show this thread
-
For the record, if you were ever actually be able to exploit it in real world (big if) it gives 15 bits of information per hour. There’s 8000000000 bits in 1gb. So only 60822 years to extract 1gb of RAM.
5 replies 7 retweets 27 likesShow this thread -
Replying to @GossiTheDog
I don't think that exfiltrating data is the goal here. Think metadata instead of data. The paper outlines (section 6.2.1) an attack that can remotely bypass ASLR in 2 hours.
1 reply 0 retweets 0 likes -
Replying to @wdormann
yep, but in terms of doing anything particularly useful in a practical sense, I don't see it.
1 reply 0 retweets 0 likes -
Replying to @GossiTheDog
A remote bypass of ASLR is quite useful, IMO. It's important to think of vulnerabilities not always as what they can do in a vacuum, but how they may be useful to an attacker in combination with something else.
1 reply 0 retweets 0 likes -
Replying to @wdormann
Of course, but I'd question the real world application here. We'll see if it ever plays out in real world. There was a side channel ASLR bypass attack from 2016 which took ~60 milliseconds to execute ( http://www.cs.ucr.edu/~nael/pubs/micro16.pdf … ).
1 reply 0 retweets 1 like -
Replying to @GossiTheDog
But keep in mind that's an attack that requires local code execution. The whole point of this NetSpectre thing is basically to remove that local-code requirement for the attacker. But yes, the real-world applicability is what really matters here, and I guess we'll see...
1 reply 0 retweets 1 like -
Replying to @wdormann
Yip! Now, back to helping the organisation doing their work on typewriters due to ransomware
1 reply 0 retweets 2 likes
Yeah, I suspect there will be some non-trivial amount of people getting spun up on this instead of considering why they may want to disable macros in MS Office.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.