Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Vista
0wning Vista from the boot
Federico Biancuzzi, 2007-04-24

Federico Biancuzzi interviews Nitin and Vipin Kumar, authors of VBootkit, a rootkit that is able to load from Windows Vista boot-sectors. They discuss the "features" of their code, the support of the various versions of Vista, the possibility to place it inside the BIOS (it needs around 1500 bytes), and the chance to use it to bypass Vista's product activation or avoid DRM.

Comments Mode:
life is not easy for anyone 2007-04-25
oh really? (2 replies)
Re: life is not easy for anyone 2007-04-30
Anonymous (1 replies)
Re: Re: life is not easy for anyone 2007-05-07
Anonymous
Re: life is not easy for anyone 2007-07-13
Anonymous
0wning Vista from the boot 2007-04-26
Anonymous
0wning Vista from the boot and ripping EEye codez 2007-04-26
Anonymous (1 replies)
Re: 0wning Vista from the boot and ripping EEye codez 2007-04-28
Anonymous
Move along, nothing new to see here 2007-04-27
Gordon Fecyk
0wning Vista from the boot 2007-04-27
Anonymous
no ripped code in vbootkit (at least yet!) 2007-04-27
Anonymous
Nothing but trick to obtain vbootkit source code!!! 2007-04-28
Anonymous
To the earlier folks who posted : eEye "stole" as well 2007-04-29
Anonymous
Effects on TPM and non TPM Bitlocker Implementations? 2007-04-30
Eoin Miller
0wning Vista from the boot 2007-05-01
osd pwnz j00
0wning Vista from the boot 2007-05-06
Anonymous
Academically interesting but not much of a real threat. Nothing new here. If you own a box physically you own it unless you are running Bitlocker (TPM). This is backed up by statements from the hackers. "It doesn't need any privileges only physical access to the machine." And "The only protection available is from hardware (Trusted Platform Module)."

More people, especially government agencies need to implement Bitlocker.


[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/442/34525#34525
Physical access doesn't mean you can load unsigned driver,play DRM,HighDef Videos. 2007-05-15
Robert Regal







 

Privacy Statement
Copyright 2007, SecurityFocus