"LogoFAIL Attack Can Install UEFI Bootkits Through Bootup Logos"

A collection of security vulnerabilities named LogoFAIL affects image-parsing components in the Unified Extensible Firmware Interface (UEFI) code from different vendors. According to researchers, attackers could use the vulnerabilities to hijack the execution flow of the booting process and deliver bootkits. Since the problems are in image-parsing libraries, which vendors use to display logos during the booting routine, they have a significant impact. They extend to x86 and ARM architectures. This article continues to discuss the research and findings behind the LogoFAIL vulnerabilities.

Bleeping Computer reports "LogoFAIL Attack Can Install UEFI Bootkits Through Bootup Logos"

Submitted by grigby1