ATI's driver can crack your kernel

Subject: General Tech | August 10, 2007 - 12:12 PM |
Tagged:

Beware of Vista drivers bearing a purple pill, says this story on [H]ard|OCP.  AMD/ATI's drivers open up a vulnerability in Vista which could allow unsigned programs to be installed silently if they are piggybacked into the installation program.  The creator of the tool that allows this posted it to his site for just over an hour, under the assumption that the vulnerability had been patched.  When he discovered it wasn't, he pulled it.

"Apparently an unpatched flaw in an ATI driver allows hackers to load unsigned drivers onto Vista. The flaw was at

the center of the Purple Pill proof-of-concept tool that exposed a way to tamper with the Windows Vista kernel.

Purple Pill, a utility released by Alex Ionescu and yanked an hour later after the kernel developer realized that

the ATI driver flaw was not yet patched, provided an easy way to load unsigned drivers onto Vista — effectively

defeating the new anti-rootkit/anti-DRM mechanism built into Microsoft’s newest operating system. "

Here is some more Tech News from around the web:

Tech Talk


Source: [H]ard|OCP
No comments posted yet.

Post new comment

The content of this field is kept private and will not be shown publicly.
  • Lines and paragraphs break automatically.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd> <blockquote><p><br>
  • Web page addresses and e-mail addresses turn into links automatically.

More information about formatting options

By submitting this form, you accept the Mollom privacy policy.