Home page logo

oss-sec logo oss-sec mailing list archives

Re: Malicious devices & vulnerabilties
From: Florian Weimer <fw () deneb enyo de>
Date: Sun, 08 Jan 2012 12:19:44 +0100

* Xi Wang:

I am wondering where to draw the line.  Should such device drivers
be considered vulnerable or not?  Thanks.

I think they should be considered vulnerable.  Some applications need
some robustness to attacks even from the local console (e.g., student
computer rooms).

USB is also a popular transport in many air-gapped environments.

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]