If userland processes are passing unauthorized commands to PCI devices, you have... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		tedunangst on Nov 28, 2016 \| parent \| context \| favorite \| on: Neutralize ME Firmware on SandyBridge and IvyBridg... If userland processes are passing unauthorized commands to PCI devices, you have bigger problems.

ackalker on Nov 29, 2016 [–]

They're called proprietary video drivers, and yes, they pass unknown commands, without user authorization (think DRM) to PCI(e) devices (video cards) all the time.

lallysingh on Nov 29, 2016 | [–]

If you're running highly privileged binary blob drivers, is ME really the attack vector you should be worried about?

Consider applying for YC's Winter 2026 batch! Applications are open till Nov 10
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact