Re: Firewire Attack on Windows Vista

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: Firewire Attack on Windows Vista
From: Steve Shockley <steve.shockley@xxxxxxxxxxxx>
Date: Mon, 10 Mar 2008 20:51:15 -0400
In-reply-to: <85B0B893C775469987222CBF5A31A860@localhost>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <1204732416.6997.53.camel@b4byl0n> <096A04F511B7FD4995AE55F13824B8332F1E35@contoso> <20080305193745.A25582@xxxxxxxxxxxx> <0273B67044957C41BD71D12EBA2E00AE252F03@xxxxxxxxxxxxxxxxxxxxxxxx> <20080306200009.GB5138@xxxxxxxxxxxxxxxxxxx> <F9C0B32C4FFE7147BD0FF6A40BE806E7038A52@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx> <F9C0B32C4FFE7147BD0FF6A40BE806E7038A55@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx> <0273B67044957C41BD71D12EBA2E00AE252F29@xxxxxxxxxxxxxxxxxxxxxxxx> <0273B67044957C41BD71D12EBA2E00AE252F2B@xxxxxxxxxxxxxxxxxxxxxxxx> <fqsdh4$5mp$1@xxxxxxxxxxxxx> <0273B67044957C41BD71D12EBA2E00AE252F35@xxxxxxxxxxxxxxxxxxxxxxxx> <85B0B893C775469987222CBF5A31A860@localhost>
User-agent: Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.9b5pre) Gecko/2008031002 Thunderbird/3.0a1pre Mnenhy/0.7.5.0

Stefan Kanthak wrote:

2. The typical user authentication won't help, we're at hardware
level here, and no OS needs to be involved.

So, if I understand you correctly, if I boot my machine into DOS thememory can be read over Firewire? Or does the machine need a Firewiredriver loaded to be vulnerable?

Follow-Ups:
- Re: Firewire Attack on Windows Vista
  - From: Stefan Kanthak

References:
- Firewire Attack on Windows Vista
  - From: Bernhard Mueller
- RE: Firewire Attack on Windows Vista
  - From: Roger A. Grimes
- Re: Firewire Attack on Windows Vista
  - From: Peter Watkins
- RE: Firewire Attack on Windows Vista
  - From: Larry Seltzer
- Re: [Full-disclosure] Firewire Attack on Windows Vista
  - From: Tim
- RE: [Full-disclosure] Firewire Attack on Windows Vista
  - From: Thor (Hammer of God)
- RE: [Full-disclosure] Firewire Attack on Windows Vista
  - From: Thor (Hammer of God)
- RE: [Full-disclosure] Firewire Attack on Windows Vista
  - From: Larry Seltzer
- RE: [Full-disclosure] Firewire Attack on Windows Vista
  - From: Larry Seltzer
- RE: [Full-disclosure] Firewire Attack on Windows Vista
  - From: Larry Seltzer
- Re: Firewire Attack on Windows Vista
  - From: Stefan Kanthak

Prev by Date: Re: [Full-disclosure] Vulnerabilities in Timbuktu Pro 8.6.5
Next by Date: Mambo Components ensenanzas "id" Remote SQL Injection
Previous by thread: Re: [Full-disclosure] Firewire Attack on Windows Vista
Next by thread: Re: Firewire Attack on Windows Vista
Index(es):
- Date
- Thread