Penetration Testing mailing list archives
Re: USB delivered attacks
From: "Fred Gravel" <mindedsmasher () hotmail com>
Date: Wed, 02 Jun 2004 20:02:14 +0000
And after some search ... autorun is possible on a usb storage device... as it explained just below ...
http://www.microsoft.com/whdc/device/storage/usbfaq.mspx Q: What must I do to trigger Autorun on my USB storage device?If you need to make a USB storage device that executes Autorun, the following two conditions must both be true:
Media must be marked as removable. The device can be set to either static or removable.We associate the "removable" nature of a device with the bus that it resides on. This means that a disk on an Integrated Device Electronics (IDE) or SCSI bus would be considered fixed, whereas a disk on a USB or IEEE 1394 bus would be regarded as removable by default. PnP uses a bit in the DEVICE_CAPABILITIES structure to determine this. For more information, see the DEVICE_CAPABILITIES Plug and Play Structure in the Windows DDK, located at http://msdn.microsoft.com/library/default.asp?url=/library/en-us/kmarch/hh/kmarch/k112_22r6.asp.
The "removable" nature of media is a property of the device. For example, in the case of a CD-ROM or a ZIP drive, the medium can be removed without the device itself going away, but on the other hand the medium and the disk cannot be separated on static storage PC cards. We obtain this information by using the StorageDeviceProperty request. For more information, see the STORAGE_DEVICE_DESCRIPTOR Storage Structure in the Windows DDK, located at http://msdn.microsoft.com/library/en-us/storage/hh/storage/k306_00qa.asp.
----Also the autorun could be used in "cooperation" of the desktop.ini file included in the folder(s) on the usb storage device if needed...
_________________________________________________________________MSN Toolbar provides one-click access to Hotmail from any Web page FREE download! http://toolbar.msn.click-url.com/go/onm00200413ave/direct/01/
Current thread:
- Re: USB delivered attacks Balaji Prasad (May 31)
- Re: USB delivered attacks Antonio Fontes 'Saphyr' (Jun 01)
- Re: USB delivered attacks Gadi Evron (Jun 01)
- <Possible follow-ups>
- RE: USB delivered attacks Steven A. Fletcher (Jun 01)
- Re: USB delivered attacks Gadi Evron (Jun 01)
- RE: USB delivered attacks Steven A. Fletcher (Jun 01)
- RE: USB delivered attacks Jerry Shenk (Jun 01)
- Re: USB delivered attacks H D Moore (Jun 02)
- Re: USB delivered attacks PID4x (Jun 02)
- Re: USB delivered attacks Fred Gravel (Jun 02)
- Re: USB delivered attacks mak_pen (Jun 04)
- Re: USB delivered attacks R. DuFresne (Jun 04)
- RE: USB delivered attacks Brian Taylor (Jun 07)
- Re: USB delivered attacks R. DuFresne (Jun 04)
- Re: USB delivered attacks randori _/_ (Jun 04)
- RE: USB delivered attacks Rob Shein (Jun 04)
- Re: USB delivered attacks Gadi Evron (Jun 07)
- Re: USB delivered attacks Kurt Seifried (Jun 04)
- RE: USB delivered attacks Rob Shein (Jun 04)
- Re:USB delivered attacks Peter Harmsen (Jun 07)
- Re: USB delivered attacks Antonio Fontes 'Saphyr' (Jun 01)