Spain
Portugal
Tacito Security researchers have released a PoC exploit for a vulnerability called iTLB multihit.
The error affects a fairly wide range of Intel processors and is associated with the associative translation buffer (TLB), a specialized CPU cache used to accelerate the translation of virtual memory addresses to physical memory addresses.
The error can lead to a DoS attack because it allows code running on a virtual machine to cause cloud servers to crash when splitting large memory segments.
Tacito researchers discovered the bug in 2017, but did not report it to Intel.
Two years later, the manufacturer, unknown to them, discovered the same problem, assigning it CVE-2018-12207.
However, Intel specialists failed to fix the vulnerability through firmware updates.
Instead, OS and hypervisor vendors have released software-level fixes, implementing mitigation measures.
However, Tacito resellers, after testing the most popular solutions, came to the conclusion that most vendors decided not to include them by default.
The decision was due to the negative impact on performance and memory usage and left virtually most hypervisors vulnerable to an iTLB multihit attack.
