Jump to content

Spectre meltdown exploit


BarMuda
 Share

Recommended Posts

Is it possible to use the Bash Bunny to utilise the meltdown and spectre vulnerability on any machine that hasnt been patched?

I think the vuln can be expolited if a users visits a website and a malicious java script is run. As the bunny is a linux box, can this run a light weight webserver and deliver the same java script?

Link to comment
Share on other sites

From what I have read, they cannot be exploited reliably remotely.  ASLR will still pose an issue seeing they will need to find kernel.dll or whatever kernel for whatever OS to tap into the feature that is bugged.  If they can then they could gather information with the exploit.  Someone can correct me if I am wrong, it is still pretty new.

With the BB it could be exploited quite well since you will be on the local machine and can run whatever program you want (at the level of the user that is signed on of course).  In this case you can make your own program to access the kernel and do its thing since it will be your program.  So, yes a BB can be used to exploit there vulnerabilities directly on the machine to get a dump of that private area.

Some people I read said code execution was possible with it too but I think what was meant was this exploit could be stacked with others to make them more effective.  Use Meltdown or Spectre to get the ASLR data so you know where to map a particular exploit when fired.

 

I think the underlying key here is getting access to the function in the kernel that is vulnerable though, I think that place is the predictive algorithm it uses to determine with branch in program execution to pre-execute to try and save time.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...