Attacking Hypervisors via Firmware and Hardware
nd5ln5n
nd5ln5n
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
NORMAL BOOTMODIFYS3 RESUMEXen exposes S3 boot script table to Dom0Privileged PV guest (Dom0)ExploitVM modifies S3 bootscript table in memoryUpon resume, firmwareexecutes rogue S3 scriptXen HypervisorU/EFI System <strong>Firmware</strong>BDSDXEUEFI core& driversS3 BootScript TableRestoreshardware configScript EnginePlatform PEI0xDBAA4000Platform PEI