arrow_upward

Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
RAMBleed - Reading Bits in Memory Without Accessing Them
#1
[Image: WOu5qUS.png]
RAMBleed - Reading Bits in Memory Without Accessing Them


A new security hole affects millions of devices such as mainly computers and servers. The research team that found the hole has dubbed it "RAMBleed". The reason for this name is quit a simple one. The security hole causes information leaks from physical RAM, allowing access to information without actually having direct access to the memory addresses and their content. An attacker can read the memory content of another process and steal information this way.

The research team has setup a information site for the security hole like many other research teams did before. They have published all information on the site. As a proof for the paper they used the attack to leak a RSA-2048 SSH key from a server with OpenSSH. Thus ripping a hole into the SSH public key authentication that is outside of the control of the SSH server.


URL to the site: https://rambleed.com/

More information, a FAQ and the paper are to be found on the homepage Smile .
[Image: zHHqO5Q.png]


Messages In This Thread
RAMBleed - Reading Bits in Memory Without Accessing Them - by Mashiro - 06-13-2019, 12:20 PM

person_pin_circle Users browsing this thread: 1 Guest(s)
Sponsors: VirMach - Host4Fun - CubeData - Evolution-Host - HostDare - Hyper Expert - Shadow Hosting - Bladenode - Hostlease - RackNerd - ReadyDedis - Limitless Hosting