Vulnerability CVE-2017-5927


Published: 2017-02-27

Description:
Page table walks conducted by the MMU during virtual to physical address translation leave a trace in the last level cache of modern ARM processors. By performing a side-channel attack on the MMU operations, it is possible to leak data and code pointers from JavaScript, breaking ASLR.

CVSS2 => (AV:N/AC:L/Au:N/C:P/I:N/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5/10
2.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
None
None
Affected software
Samsung -> Exynos 5800 
Nvidia -> Tegra k1 cd570m-a1 
Nvidia -> Tegra k1 cd580m-a1 
Intel -> Core i7-3632qm 
Intel -> Core i7 920 
Intel -> Xeon e5-2658 v2 
Intel -> Core i7-6700k 
Intel -> Atom c2750 
Intel -> Xeon e3-1240 v5 
Intel -> Core i5 m480 
Intel -> Core i7-2620qm 
Intel -> Celeron n2840 
Intel -> Core i7-4500u 
AMD -> Fx-8120 8-core 
AMD -> Fx-8350 8-core 
AMD -> Athlon ii 640 x4 
AMD -> Fx-8320 8-core 
AMD -> Phenom 9550 4-core 
AMD -> E-350 
Allwinner -> A64 

 References:
http://www.cs.vu.nl/~herbertb/download/papers/anc_ndss17.pdf
http://www.securityfocus.com/bid/96459
https://www.vusec.net/projects/anc

Copyright 2020, cxsecurity.com

 

Back to Top