Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: InfoSec Handlers Diary Blog - Internet Storm Center Diary 2006-07-07 InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Black Tuesday Advance Notice

Published: 2006-07-07
Last Updated: 2006-07-07 22:56:04 UTC
by John Bambenek (Version: 1)
0 comment(s)
Microsoft sent out the Advance Notice for Black Tuesday.  In short, 4 Windows patches and 3 Office patches with some in both categories being critical updates.  Stay tuned here on Tuesday for our monthly breakdown of the patches and the vulnerabilities they remediate.

---
John Bambenek
bambenek /at/ gmail /dot/ com
Keywords:
0 comment(s)

Hacking Wireless Drivers for Fun and Profit

Published: 2006-07-07
Last Updated: 2006-07-07 22:49:59 UTC
by John Bambenek (Version: 1)
0 comment(s)
An ISC reader pointed out this relatively new exploit vector. At the upcoming BlackHat conference, a duo is going to demonstrate hacking WiFi device drivers to assume control of a target machine.  The combination of device drivers (which sit close to the kernel) and wireless technology makes this vector uniquely possible.  Most devices drivers you couldn't safely attack because devices are attached to the actual hardware, but wireless is meant to work over distance.  The vector is still limited by distance to those close enough to some transmission agent, but with the growing prevalence of free wireless hotspots it is easy to find places where enough laptops congregate to get good results (say a conference or in an airport terminal).  Basically it's a neat little vector of attacks I imagine we'll be seeing more of in the near future.

---
John Bambenek
bambenek /at/ gmail /dot/ com
Keywords:
0 comment(s)
Diary Archives