RE: 13-year old boot sector virus shipped on German laptops

[<Toralv_Dirro () McAfee com>]

Spreading *from* a floppy is easy - try to boot from one, even failing
to load an OS from the floppy will get the virus executed and allow it
to write to hard disk. No matter what OS is on it.

The real question that remains: Is there any step in the production of
the image that does involve booting from a floppy disk at any time?
Friends I consulted about that said no. All of them.

Sabotage? I wouldn't rule it out....


cheers,
Toralv


 

> -----Original Message-----
> From: Valdis.Kletnieks () vt edu [mailto:Valdis.Kletnieks () vt edu] 
> Sent: Montag, 17. September 2007 23:21
> To: Dirro, Toralv
> Cc: juha-matti.laurio () netti fi; funsec () linuxbox org
> Subject: Re: [funsec] 13-year old boot sector virus shipped 
> on German laptops
>
> On Mon, 17 Sep 2007 21:49:37 BST, Toralv_Dirro () McAfee com said:
> > Boot sector viruses don't spread easily (read: 'at all') 
> under current 
> > operating Systems. Doesn't matter if there is a floppy or not
>
> Then how did it propagate *onto* the gold system that got 
> imaged to create the distributed image on the laptops? :)


Firmensitz:     Muenchen 
Amtsgericht:     AG Muenchen 
Handelsregister:   HRB 144340 
Geschaeftsfuehrer:   Eric F. Brown, Anthony E. Ruiseal
Bankverbindung:   ABN-Amro Bank N.V. Konto 671 211 9006 
UST-ID:   DE168122444 


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.