Guru3D.com
  • HOME
  • NEWS
    • Channels
    • Archive
  • DOWNLOADS
    • New Downloads
    • Categories
    • Archive
  • GAME REVIEWS
  • ARTICLES
    • Rig of the Month
    • Join ROTM
    • PC Buyers Guide
    • Guru3D VGA Charts
    • Editorials
    • Dated content
  • HARDWARE REVIEWS
    • Videocards
    • Processors
    • Audio
    • Motherboards
    • Memory and Flash
    • SSD Storage
    • Chassis
    • Media Players
    • Power Supply
    • Laptop and Mobile
    • Smartphone
    • Networking
    • Keyboard Mouse
    • Cooling
    • Search articles
    • Knowledgebase
    • More Categories
  • FORUMS
  • NEWSLETTER
  • CONTACT

New Reviews
PowerColor RX 6650 XT Hellhound White review
FSP Hydro PTM Pro (1200W PSU) review
ASUS ROG Radeon RX 6750 XT STRIX review
AMD FidelityFX Super Resolution 2.0 - preview
Sapphire Radeon RX 6650 XT Nitro+ review
Sapphire Radeon RX 6950 XT Sapphire Nitro+ Pure review
Sapphire Radeon RX 6750 XT Nitro+ review
MSI Radeon RX 6950 XT Gaming X TRIO review
MSI Radeon RX 6750 XT Gaming X TRIO review
MSI Radeon RX 6650 XT Gaming X review

New Downloads
AIDA64 Download Version 6.70
FurMark Download v1.30
Display Driver Uninstaller Download version 18.0.5.1
Download Samsung Magician v7.1.1.820
Intel ARC graphics Driver Download Version: 30.0.101.1732
HWiNFO Download v7.24
GeForce 512.77 WHQL driver download
Intel HD graphics Driver Download Version: 30.0.101.1960
AMD Radeon Software Adrenalin 22.5.1 WHQL driver download
3DMark Download v2.22.7359 + Time Spy


New Forum Topics
[3rd-Party Driver] Amernime Zone Radeon Insight 22.5.1 WHQL Driver Pack (Released) Rumor: AMD to announce X670 Extreme, X670 and B650 Chipsets Intel raptor Lake Caches Confirmed through leaked CPU-Z screenshot Rumor: NVIDIA could unveil a GeForce GTX 1630 this month AMD Radeon Software Adrenalin 22.5.1 WHQL driver download and discussion NVIDIA Profile Inspector 2.3.0.13 Review: PowerColor RX 6650 XT Hellhound White EK Announces Quantum CPU Water Blocks with Walnut Wood Tops AMD Software Preview Driver May 2022 driver download and discussion Free to grab: Borderlands 3 free on Epic Games Store




Guru3D.com » News » Researcher Demonstrates USB Stick That Can BSOD Any Windows 10 Device Even If Locked

Researcher Demonstrates USB Stick That Can BSOD Any Windows 10 Device Even If Locked

by Hilbert Hagedoorn on: 05/03/2018 07:28 AM | source: | 14 comment(s)

Microsoft has a security issue that affects both Windows 7 and Windows 10 operating systems. The code exploits a vulnerability in Microsoft's handling of NTFS filesystem images and was discovered by Marius Tivadar, a security researcher with Bitdefender. He reported the issue to Microsoft but was not heard. This video dates back towards Summer 2017. Now, he's stepping out with details and a demonstration to raise awareness of this vulnerability. Microsoft downgraded the bug's severity because exploiting it requires either physical access or social engineering (tricking the user). The researcher doesn't agree with Microsoft's decision. The exploit is nasty because Tivadar's proof-of-concept shows he can force a BSOD, even with Windows locked. It literally takes 2 to 3 seconds to crash the OS and is still present, even with Windows 10 version 1803 - the April 2018 Update. Have a peek at the video.

 







« Dell and HP are working on high-end Chromebooks · Researcher Demonstrates USB Stick That Can BSOD Any Windows 10 Device Even If Locked · Backblaze Hard Drive Stats for Q1 2018 Have Been published - 4TB HGST HDDs Very Reliable »

Related Stories

Researchers Discover new Intel processor Vulnerability - the BranchScope Attack - 03/28/2018 01:58 PM
A new Vulnerability has been discovered on Intel processors by researchers. The security attack uses the speculative execution features of modern processors to leak sensitive information and underm...

Initial AMD Technical Assessment of CTS Labs Research - 03/21/2018 08:05 AM
On March 12, 2018, AMD received a communication from CTS Labs regarding research into security vulnerabilities involving some AMD products. Less than 24 hours later, the research firm went public with...

Security researchers bypass lockscreen and install malware through Cortana - 03/07/2018 09:11 AM
Researchers shared the word that they will demonstrate how they are able to bypass the password-protected Windows 10 lock screen and then install malware from a website, through Microsoft’s ...

Microsoft Researches Holographic Near-Eye Displays - 05/22/2017 08:55 AM
Microsoft shows a thing or two how digital holography can be used to build novel near-eye displays for virtual and mixed (or augmented) reality. using the form factor of sunglasses by using a powerf...

Google Project Zero researchers find ‘crazy bad’ Windows RCE flaw - 05/09/2017 08:24 AM
Security experts at Google Project Zero team have discovered another critical remote code execution (RCE) vulnerability in Microsoft Windows OS, but this time the hackers defined it as the worst Windo...


3 pages 1 2 3


Kaarme
Senior Member



Posts: 2889
Joined: 2013-03-10

#5543445 Posted on: 05/03/2018 12:23 PM
It's actually much worse than you think; It's not a buggy hardware or thumbdrive firmware causing an issue: pretty much any standard USB thumb drive can be turned into this by simply intentionally malforming an NTFS partition (only a partially completed partition, in this case), which is easily done.


Oh, I don't know anything about this bug. I'm sure this is a real Windows bug. I was merely saying that I haven't personally ever seen a Win10 BSOD on my own PCs, and that my other problems were likely related to my own hardware and their drives.

Fox2232
Senior Member



Posts: 11809
Joined: 2012-07-20

#5543474 Posted on: 05/03/2018 01:36 PM
Unless it can force code execution, it is just stupid joke. If I can plug USB to your system, I can hold power button on it too.

reix2x
Senior Member



Posts: 508
Joined: 2010-01-20

#5543506 Posted on: 05/03/2018 03:09 PM
i would like to see if it affects windows server, i see some applications in a server room. It could be used as a form of sabotage .

asturur
Senior Member



Posts: 1198
Joined: 2010-05-12

#5543523 Posted on: 05/03/2018 03:50 PM
Is not a stupid joke is a stupid OS that crash on broken disks. And this is inadmissible nowadays.

David3k
Senior Member



Posts: 116
Joined: 2003-07-29

#5543577 Posted on: 05/03/2018 05:43 PM
Unless it can force code execution, it is just stupid joke. If I can plug USB to your system, I can hold power button on it too.

Is not a stupid joke is a stupid OS that crash on broken disks. And this is inadmissible nowadays.


In this case, the crafted NTFS-crashing drive image can't occur under normal circumstances, but can specifically crafted to intentionally force a BSOD and dump memory. You don't even need a USB stick to pull this off, and an entire attack can take place within userland without once elevating with UAC.

Powering down a system is a hell of a lot more preferable to a BSOD where the dump can be easily taken for analysis. This isn't a broken disk issue, either, since a broken or corrupted NTFS partition can't take down the entire kernel but a valid (but malformed) one can.

3 pages 1 2 3


Post New Comment
Click here to post a comment for this news story on the message forum.


Guru3D.com © 2022