* Matthew R. Dempsky <[EMAIL PROTECTED]> [2007-01-29 15:16:15]: > On Mon, Jan 29, 2007 at 01:30:01PM -0600, Travers Buda wrote: > > Well I think both are equally dangerous (binary firmware and binary > > drivers.) They're basically the same thing. > > My understanding has always been that a bad binary driver can corrupt > main memory, but a bad binary firmware is limited to making the device > useless. Is this not the case? > >
Well there is that proof-of-concept that debuted at BlackHat where those researchers compromised the OS of a macintosh. I was under the impression that they compromised it via the firmware, but it is equally possible it was achieved via the driver. Details seem to be sketchy... hrm. At the very least you could do some nefarious things to the firmware to say, retransmit hardware wep'ed traffic without wep. -- Travers Buda
