SecurityFocus

Firewire Attack on Windows Vista Mar 05 2008 03:53PM
Bernhard Mueller (research sec-consult com) (2 replies)

RE: Firewire Attack on Windows Vista Mar 05 2008 09:30PM
Roger A. Grimes (roger banneretcs com) (4 replies)

RE: Firewire Attack on Windows Vista Mar 06 2008 10:01AM
bzhbfzj3001 sneakemail com (1 replies)

Actually they can be prevented by instructing the controller to filter the
adresses the devices send. Then again, that's work, and physical attacks
are typically considered low-risk, so I guess it's not found worth it.

The obvious reason to mention Vista is of course that Microsoft likes
to talk about how they made it oh-so-secure, which is a nice contrast to
leaving a large hole open that they have known about for at least 3 years.

Oh well, I guess we'll just have to wait until someone releases a tool
that uses this vulnerability to break either Vista's activation or its
DRM.

Martijn
PS. I'm on the list, and the address you see will be closed as I don't
feel like dealing with the out-of-offices, so reply on-list and don't
bother to CC. Thanks!

On Wed, 5 Mar 2008, Roger A. Grimes wrote:

> As somewhat indicated in the paper itself, these types of physical DMA
> attacks are possible against any PC-based OS, not just Windows. If
> that's true, why is the paper titled around Windows Vista?
>
> I guess it makes headlines faster. But isn't as important, if not more
> important, to say all PC-based systems have the same underlying problem?
> That it's a broader problem needing a broader solution, instead of
> picking on one OS vendor to get headlines?
>
> [Disclaimer: I'm a full-time Microsoft employee.]
> Roger
>

[ reply ]

Re: Firewire Attack on Windows Vista Mar 07 2008 07:51AM
Tonnerre Lombard (tonnerre lombard sygroup ch) (1 replies)

Re: Firewire Attack on Windows Vista Mar 07 2008 06:59PM
Nathanael Hoyle (nhoyle hoyletech com)

Re: Firewire Attack on Windows Vista Mar 06 2008 07:54AM
Tonnerre Lombard (tonnerre lombard sygroup ch)

Re: Firewire Attack on Windows Vista Mar 06 2008 12:57AM
Daniel O'Connor (doconnor gsoft com au)

Re: Firewire Attack on Windows Vista Mar 06 2008 12:37AM
Peter Watkins (peterw usa net) (1 replies)

RE: Firewire Attack on Windows Vista Mar 06 2008 05:50PM
Larry Seltzer (Larry larryseltzer com) (2 replies)

RE: Firewire Attack on Windows Vista Mar 06 2008 09:11PM
Thor (Hammer of God) (thor hammerofgod com)

Re: [Full-disclosure] Firewire Attack on Windows Vista Mar 06 2008 08:00PM
Tim (tim-security sentinelchicken org) (2 replies)

RE: [Full-disclosure] Firewire Attack on Windows Vista Mar 07 2008 05:42PM
Thor (Hammer of God) (thor hammerofgod com) (1 replies)

RE: [Full-disclosure] Firewire Attack on Windows Vista Mar 07 2008 07:40PM
Thor (Hammer of God) (thor hammerofgod com) (1 replies)

RE: [Full-disclosure] Firewire Attack on Windows Vista Mar 07 2008 07:44PM
Larry Seltzer (Larry larryseltzer com) (1 replies)

RE: [Full-disclosure] Firewire Attack on Windows Vista Mar 07 2008 07:51PM
Larry Seltzer (Larry larryseltzer com)

RE: [Full-disclosure] Firewire Attack on Windows Vista Mar 06 2008 08:13PM
Larry Seltzer (Larry larryseltzer com) (1 replies)

Re: [Full-disclosure] Firewire Attack on Windows Vista Mar 06 2008 08:20PM
Tim (tim-security sentinelchicken org) (1 replies)

RE: [Full-disclosure] Firewire Attack on Windows Vista Mar 06 2008 08:35PM
Larry Seltzer (Larry larryseltzer com) (1 replies)

Re: [Full-disclosure] Firewire Attack on Windows Vista Mar 06 2008 08:44PM
Tim (tim-security sentinelchicken org)

Re: Firewire Attack on Windows Vista Mar 05 2008 06:29PM
Thierry Zoller (Thierry Zoller lu)