Inception attack (0day) all AMD Zen CPUs are at risk

Researchers have discovered a new and powerful attack called “Inception”. The attack can leak data using unprivileged processes on all AMD Zen processors, including the latest models.

The attacks exploit a feature found in all modern processors called speculative execution, which dramatically increases CPU performance by guessing what will be executed next before a slower operation completes.zen 4 ryzen 7000

If the guess is correct, the CPU increases performance without waiting for the operation to finish, and if it guesses wrong, it simply reverts the change and continues its operation as is.

The problem with this feature is that it can leave traces that attackers can observe or analyze to recover valuable data that should otherwise be protected.

Researchers from ETH Zurich have combined an older technique called “Phantom speculation” (CVE-2022-23825) with a new attack called “Training in Transient Execution” (TTE) to create the even more powerful “Inception” attack.

The Inception attack, tracked with CVE-2023-20569, is a new attack that combines the concepts described above, allowing an attacker to trick the CPU into believing that an XOR (simple binary operation) is a recursive call command.

This causes the return stack buffer to overflow with a target address controlled by the attacker, allowing him to receive arbitrary data from unprivileged processes running on any AMD Zen CPU.

The leak is possible even if all updates from other known similar attacks such as Spectre.

The data leak rate achieved through Inception is 39 bytes/sec, meaning it would take about half a second to steal a 16-character password and 6,5 seconds for an RSA key.

iGuRu.gr The Best Technology Site in Greecegns

Get the best viral stories straight into your inbox!















AMD Zen

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).