New Rowhammer Attack Targets NVIDIA GPUs for Full System Compromise
Researchers have demonstrated a new Rowhammer attack targeting NVIDIA Ampere-generation GPUs that can lead to full system compromise if IOMMU is disabled.
Researchers have demonstrated a new Rowhammer-based attack capable of achieving complete control over NVIDIA GPUs, specifically affecting the Ampere generation of hardware. By exploiting GDDR memory bitflips, the attack can compromise the host machine's CPU memory, leading to a full system takeover.
The attack requires specific conditions to succeed, most notably that the IOMMU (Input-Output Memory Management Unit) must be disabled. As IOMMU is often disabled by default in many BIOS configurations, this presents a significant security risk for users of affected NVIDIA hardware. The researchers noted that while Rowhammer is a well-studied phenomenon on CPUs, this demonstration highlights its growing danger in GPU environments.
Security professionals and system administrators are advised to ensure that IOMMU is enabled in their system BIOS settings to mitigate this vulnerability. Further research and vendor responses are expected as the industry evaluates the broader implications of GPU-based Rowhammer attacks. [Schneier on Security]