0wning Vista from the boot

0wning Vista from the boot
Federico Biancuzzi, 2007-04-24

Federico Biancuzzi interviews Nitin and Vipin Kumar, authors of VBootkit, a rootkit that is able to load from Windows Vista boot-sectors. They discuss the "features" of their code, the support of the various versions of Vista, the possibility to place it inside the BIOS (it needs around 1500 bytes), and the chance to use it to bypass Vista's product activation or avoid DRM.

Expand all | Post comment

life is not easy for anyone 2007-04-25
oh really? (2 replies)

Re: life is not easy for anyone 2007-04-30
Anonymous (1 replies)

Re: Re: life is not easy for anyone 2007-05-07
Anonymous

Re: life is not easy for anyone 2007-07-13
Anonymous

0wning Vista from the boot 2007-04-26
Anonymous (1 replies)

Re: 0wning Vista from the boot 2009-03-16
Anonymous

0wning Vista from the boot and ripping EEye codez 2007-04-26
Anonymous (1 replies)

Re: 0wning Vista from the boot and ripping EEye codez 2007-04-28
Anonymous

Move along, nothing new to see here 2007-04-27
Gordon Fecyk

So you start the machine with a special disk of some kind. Just as the authors pointed out, this is decades old.

How to beat this? Disable booting from other media, or just remove the other drives. How to prevent a BIOS reset? Rivet the case shut already, or buy a padlock for the lock loop on the back of many PC cases.

*snore*

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/442/34487#34487

0wning Vista from the boot 2007-04-27
Anonymous

no ripped code in vbootkit (at least yet!) 2007-04-27
Anonymous

Nothing but trick to obtain vbootkit source code!!! 2007-04-28
Anonymous

To the earlier folks who posted : eEye "stole" as well 2007-04-29
Anonymous

Effects on TPM and non TPM Bitlocker Implementations? 2007-04-30
Eoin Miller

0wning Vista from the boot 2007-05-01
osd pwnz j00

0wning Vista from the boot 2007-05-06
Anonymous

Physical access doesn't mean you can load unsigned driver,play DRM,HighDef Videos. 2007-05-15
Robert Regal