AMD vulnerability can leak passwords – update now

Chip manufacturer AMD has shared more details on a chipset driver vulnerability that allowed non-admin computer users to download passwords and carry out other attacks.

The issue affects a wide range of AMD processors, including all Ryzen desktop and mobile processors.

ZeroPeril co-founder and security researcher Kyriakos Economou discovered and reported the flaw to AMD in a coordinated disclosure.

Economou used the exploit to download several gigabytes of sensitive data from an AMD processor as a non-admin user.

The critical information disclosure vulnerability affected the AMD Platform Security Processor (PSP) chipset driver for multiple CPU architectures.

It allowed non-privileged users to read uninitialised physical memory pages, where the original data was either moved or paged out.

“The contents of those physical pages varied from kernel objects and arbitrary pool addresses that can be used to circumvent exploitation mitigations such as KASLR, and even registry key mappings of \Registry\Machine\SAM containing NTLM hashes of user authentication credentials that can be used in subsequent attack stages,” a report on the vulnerability stated.

Economou reported the issue to AMD on 8 April 2021, and it responded a day later.

The company acknowledged the vulnerability’s existence on 12 May 2021, after which it rolled out mitigations.

Economou then shared the vulnerability to the public on 14 September 2021.

Users can download patches for the vulnerabilities via Windows Update or AMD’s support site.

The impacted hardware is as follows:

  • 2nd Gen AMD Ryzen Mobile Processor with Radeon Graphics
  • 2nd Gen AMD Ryzen Threadripper processor
  • 3rd Gen AMD Ryzen Threadripper Processors
  • 6th Generation AMD A-series CPU with Radeon Graphics
  • 6th Generation AMD A-Series Mobile Processor
  • 6th Generation AMD FX APU with Radeon R7 Graphics
  • 7th Generation AMD A-Series APUs
  • 7th Generation AMD A-Series Mobile Processor
  • 7th Generation AMD E-Series Mobile Processor
  • AMD A4-Series APU with Radeon Graphics
  • AMD A6 APU with Radeon R5 Graphics
  • AMD A8 APU with Radeon R6 Graphics
  • AMD A10 APU with Radeon R6 Graphics
  • AMD 3000 Series Mobile Processors with Radeon Graphics
  • AMD Athlon 3000 Series Mobile Processors with Radeon Graphics
  • AMD Athlon Mobile Processors with Radeon Graphics
  • AMD Athlon X4 Processor
  • AMD Athlon 3000 Series Mobile Processors with Radeon Graphics
  • AMD Athlon X4 Processor
  • AMD E1-Series APU with Radeon Graphics
  • AMD Ryzen 1000 series Processor
  • AMD Ryzen 2000 series Desktop Processor
  • AMD Ryzen 2000 series Mobile Processor
  • AMD Ryzen 3000 Series Desktop Processor
  • AMD Ryzen 3000 series Mobile Processor with Radeon Graphics
  • AMD Ryzen 3000 series Mobile Processor
  • AMD Ryzen 4000 Series Desktop Processor with Radeon Graphics
  • AMD Ryzen 5000 Series Desktop Processor
  • AMD Ryzen 5000 Series Desktop Processor with Radeon Graphics
  • AMD Ryzen 5000 Series Mobile Processors with Radeon Graphics
  • AMD Ryzen Threadripper PRO Processor
  • AMD Ryzen Threadripper Processor

Now read: Scamming a scammer — we chatted up a fraudster to see what would happen

Latest news

Partner Content

Show comments

Recommended

Share this article
AMD vulnerability can leak passwords – update now