Saw this while reading the AusNOG mailing list
Design flaw in Intel chips opens door to rootkits
[quote]The vulnerability was introduced in 1997, but has remained hidden until now, researcher says.
By leveraging the flaw, attackers could install a rootkit in the
processors System Management Mode (SMM), a protected region of code that
underpins all the firmware security features in modern computers.
To exploit the vulnerability and install the rootkit, attackers would
need to already have kernel or system privileges on a computer. That
means the flaw cant be used by itself to compromise a system, but could
make an existing malware infection highly persistent and completely
While it maybe difficult to exploit on the average computer, it seems to be possible. Requires a system to be infected with privileges.