search

eclypsium / BootHole

BootHole vulnerability (CVE-2020-10713). detection script, links and other mitigation related materials
GNU General Public License v3.0
63 stars 14 forks source link

Errors executing both scripts #2

Open ivan-arrizabalaga opened 4 years ago

ivan-arrizabalaga commented 4 years ago

Executing the script in Linux returns this errors: image

Executing the script in Windows returns this errors: image The first one says that it doesn't recognize SecureBoot. The second one is related with the drives.

I have tested both scripts in virtual machines and the Linux one in normal and gets the same errors.

wrffrz commented 4 years ago

Hey, thanks for the interest and letting us know about these issues. In our haste to get these scripts available with everything else that was going on, it looks like we didn't actually test them on systems that are using legacy BIOS boot without UEFI at all.

In that case, UEFI Secure Boot isn't present and technically you're not affected by the BootHole vulnerabilities because those are a bypass of a boot integrity protection mechanism. But on the flip side, the system is vulnerable to bootkit-style attacks in general because there's nothing protecting the boot process.

Thanks for reporting these and we'll get the scripts updated.