2008/3/4, Ivan . [EMAIL PROTECTED]:
http://www.smh.com.au/news/security/hack-into-a-windows-pc--no-password-needed/2008/03/04/1204402423638.html
Here is a (totally unofficial) mirror of Metlstorm's files in case you
can't reach his overloaded website :-\
I guess the release of this tool makes physical access pen-tests a little
bit easier huh? Will have to try this out some time.
Steven
http://www.smh.com.au/news/security/hack-into-a-windows-pc--no-password-needed/2008/03/04/1204402423638.html
___
The key to the vulnerability: To use the tool, hackers must connect a
Linux-based computer to a Firewire port on the target machine. The
machine is then tricked into allowing the attacking computer to have
read and write access to its memory.
I assume this makes it a local login, not a domain
://storm.net.nz/projects/16)
- Eric
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Larry
Seltzer
Sent: Tuesday, March 04, 2008 4:01 PM
To: Untitled
Subject: Re: [Full-disclosure] Hack into a Windows PC - no password needed
The key to the vulnerability
://storm.net.nz/projects/16)
- Eric
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Larry
Seltzer
Sent: Tuesday, March 04, 2008 4:01 PM
To: Untitled
Subject: Re: [Full-disclosure] Hack into a Windows PC - no password needed
The key to the vulnerability
On Tue, 04 Mar 2008 19:00:33 EST, Larry Seltzer said:
So does the same capability exist on Macs?
What, don't you remember? :)
Google for the phrase Owned by an iPod...
pgppkWLA8zBDg.pgp
Description: PGP signature
___
Full-Disclosure - We believe