Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq: Re: [Full-disclosure] Firewire Attack on Windows Vista

Re: [Full-disclosure] Firewire Attack on Windows Vista

From: Tim <tim-security_at_sentinelchicken.org>
Date: Thu, 6 Mar 2008 12:20:28 -0800

> >>...Windows would not do this. It would only open up access to devices
> that it thought needed DMA. This is why Metlstorm had to make his Linux
> machine behave like an iPod to fool Windows into spreading it's legs.
>
> So the iPod software opens up the whole address space? I don't get it.

No, the iPod device signature makes Windows drivers think it should
allow DMA access for that device because it detect it as a disk device.
Other disk device signatures would likely work the same way, that's just
the one he happened to emulate.

tim
Received on Mar 07 2008

This message: [ Message body ]
Next message: Larry Seltzer: "RE: [Full-disclosure] Firewire Attack on Windows Vista"
Previous message: Tim: "Re: [Full-disclosure] Firewire Attack on Windows Vista"
In reply to: Larry Seltzer: "RE: [Full-disclosure] Firewire Attack on Windows Vista"
Next in thread: Larry Seltzer: "RE: [Full-disclosure] Firewire Attack on Windows Vista"
Reply: Larry Seltzer: "RE: [Full-disclosure] Firewire Attack on Windows Vista"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]