Just about every Windows and Linux device vulnerable to new LogoFAIL firmware attack

#21883 - Just about every Windows and Linux device vulnerable to new LogoFAIL firmware attack | Ars Technica

https://arstechnica.com/security/2023/12/just-about-every-windows-and-linux-device-vulnerable-to-new-logofail-firmware-attack/

Jeudi 07 décembre 2023 à 21:10:12

By replacing the legitimate logo images with identical-looking ones that have been specially crafted to exploit these bugs, LogoFAIL makes it possible to execute malicious code at the most sensitive stage of the boot process, which is known as DXE, short for Driver Execution Environment.

On parle ici du logo de la marque du PC qui s’affiche en démarrant le PC, au moment de l’UEFI.
Il semble que les lib de décodage et d’affichage même de ces images soient bourrées de failles, et qu’on peut forger des fichiers images qui les exploitent…