Drive hacks (Was:Re: [Pc_Support] Re: VMware pre-made virtual
guests)
Carter Manucy
carter at carter.cc
Sun Aug 6 12:28:41 EDT 2006
Jerry Hubbard wrote:
>
> Are NIC driver hacks a concern? Since hearing about the Black Hat demo
> of a wireless driver hack, I have been wondering about this.
>
> http://blog.washingtonpost.com/securityfix/2006/08/hijacking_a_macbook_in_60_seco.html
>
One thing to keep in mind is that wireless (802.11) is, by some
accounts, a overly-complicated protocol. This is one of the main
reasons you're seeing this wireless exploit at the driver level vs. a
'tried and true' Ethernet (802.3) exploit. I'm not saying it's not
possible (as I really don't know the details on this 802.11 hack), but I
will say it's MUCH less likely.
All the more reason to keep that radio in the "OFF" position while
you're not using it! This hack is pretty much OS independent, although
I haven't seen or heard of any Linux-based exploits on it, I'm sure they
are possible given the protocol.
-Carter
More information about the Pc_support
mailing list