Just about every Windows and Linux device vulnerable to new LogoFAIL firmware attack(ars technica)
Just about every Windows and Linux device vulnerable to new LogoFAIL firmware attack(ars technica)
Posted Dec 7, 2023 19:33 UTC (Thu) by geofft (subscriber, #59789)In reply to: Just about every Windows and Linux device vulnerable to new LogoFAIL firmware attack(ars technica) by simon.d
Parent article: Just about every Windows and Linux device vulnerable to new LogoFAIL firmware attack (Ars Technica)
I think no, because you're not triggering loading anything that wouldn't already be loaded. The PCR scheme relies on the cooperation of each thing in the boot chain to hash in the next thing before passing control. The logo code is already called, and so the attacker gets code execution partway through this chain while the PCR is in a state it would have, at least briefly, legitimately been in. So the attacker can just extend the hashes and reach the same value.