Bugtraq mailing list archives
RE: Firewire Attack on Windows Vista
From: bzhbfzj3001 () sneakemail com
Date: Thu, 6 Mar 2008 11:01:45 +0100 (CET)
Actually they can be prevented by instructing the controller to filter the adresses the devices send. Then again, that's work, and physical attacks are typically considered low-risk, so I guess it's not found worth it.
The obvious reason to mention Vista is of course that Microsoft likes to talk about how they made it oh-so-secure, which is a nice contrast to leaving a large hole open that they have known about for at least 3 years.
Oh well, I guess we'll just have to wait until someone releases a tool that uses this vulnerability to break either Vista's activation or its DRM.
MartijnPS. I'm on the list, and the address you see will be closed as I don't feel like dealing with the out-of-offices, so reply on-list and don't bother to CC. Thanks!
On Wed, 5 Mar 2008, Roger A. Grimes wrote:
As somewhat indicated in the paper itself, these types of physical DMA attacks are possible against any PC-based OS, not just Windows. If that's true, why is the paper titled around Windows Vista?I guess it makes headlines faster. But isn't as important, if not more important, to say all PC-based systems have the same underlying problem? That it's a broader problem needing a broader solution, instead of picking on one OS vendor to get headlines?[Disclaimer: I'm a full-time Microsoft employee.] Roger
Current thread:
- Re: Firewire Attack on Windows Vista, (continued)
- Re: Firewire Attack on Windows Vista Stefan Kanthak (Mar 10)
- RE: [Full-disclosure] Firewire Attack on Windows Vista Larry Seltzer (Mar 10)
- Re: [Full-disclosure] Firewire Attack on Windows Vista Stefan Kanthak (Mar 10)
- Re: [Full-disclosure] Firewire Attack on Windows Vista Ansgar -59cobalt- Wiechers (Mar 10)
- Re: Firewire Attack on Windows Vista Steve Shockley (Mar 11)
- Re: Firewire Attack on Windows Vista Stefan Kanthak (Mar 13)
- Re: [Full-disclosure] Firewire Attack on Windows Vista FD (Mar 11)
- RE: Firewire Attack on Windows Vista Thor (Hammer of God) (Mar 07)
- Re: Firewire Attack on Windows Vista Tonnerre Lombard (Mar 07)
- Re: Firewire Attack on Windows Vista Nathanael Hoyle (Mar 07)