Watch the video presentation Jon “Johnny Cache” Ellch and David Maynor at Black Hat USA 2006 conference in Las Vegas on a new method for remotely (using Wireless) circumventing the security of an Apple Macbook computer to seize total control over the machine.观看视频演示琼“约翰尼缓存” ellch和戴维梅诺在黑帽会议的美国2006年在拉斯维加斯的一种新方法,为远程(使用无线)绕过安全苹果的MacBook电脑要抓住全面控制的机器。

The demo uses a script to exploit a vulnerability of third-party wireless device driver by Atheros for MacBook.演示使用一个脚本来利用系统中的漏洞第三党的无线设备驱动程序由Atheros的,为的MacBook 。 It is enough for a vulnerable machine to have its wireless card active for such an attack to be successful.这是足以让一个脆弱的机器有其积极的无线网卡,为这种攻击获得成功。

The device driver software that powers these wireless devices operates at such a low level of the operating system that traditional system safeguards like firewalls and anti-virus software will not stop the operating system from accepting a maliciously crafted network probe from an attacker seeking to exploit device driver-specific flaws.设备驱动程序软件的权力,这些无线设备的运作,在这样一个低水平的作业系统,传统的制度保障,例如防火墙和反病毒软件不会停止作业系统,从接受恶意制作的网络探针,从攻击者设法利用装置驱动程序特定的缺陷。
via通过 Washington Post华盛顿邮报

The funny part is that Maynor & Ellch have found at least two similar flaws in device drivers for wireless cards either designed for or embedded in machines running the Windows operating system.有趣的部分是梅诺& ellch已发现至少有两个类似的漏洞,在设备驱动程序的无线卡,无论是设计或嵌入在机器运行Windows作业系统。 And yet they decided to run the demo against a Mac due to “Mac user base aura of smugness on security”.但他们决定运行演示反对在Mac上,由于“陆委会用户基数的气氛smugness上的安全” 。

“We’re not picking specifically on Macs here, but if you watch those ‘Get a Mac’ commercials enough, it eventually makes you want to stab one of those users in the eye with a lit cigarette or something,” Maynor said. “我们还没有采摘,特别在Mac在这里,但是如果你看那些'拥有一台Mac '商业不够的,它最终使你想刺伤之一,这些用户在眼睛与点燃的香烟或一些” ,梅诺说。

Filed under提起下 Apple苹果 , Computer Security计算机安全 , Hardware硬件 , Headline News头条新闻 , How To如何 , Humor幽默 , Microsoft微软 , Open Source Software开放源码软件 , Technology技术 , Windows在Windows | | Comment on this Article | | RSS Feed RSS 2.0 2.0 | | Trackback this Article Trackback Trackback跟踪 this Article |此文章| Email this Article Email this Article电子邮件此文章

You may also like to read您也可以想读

2 Responses to “How To Hijack a MacBook in 60 Seconds or Less” 2反应“如何劫持的MacBook在60秒或更少”

  1. 评论 Benjamin 本杰明 Says:说:
    September 15th, 2006 at 8:50 am 2006年9月15日在上午8时50分

    Hello,喂,

    Interesting presentation.有趣的介绍。 I have a few questions for you…我有几个问题,为您…
    You mentioned that the Apple does not have to be connected to an access point, so how is the link made, especially if the wi-fi card has no IP defined at that point?你提到苹果并不都必须连接到一个接入点,所以又是怎样的联系,尤其是如果Wi - Fi卡已没有IP的定义在这一点上呢?
    Is this flaw also present in the built-in Macbook card?这是瑕疵也出席了在内置的MacBook在卡?
    You mentioned that the flaw was not specific to Mac but to the third-party driver and hardware.你提到的这个安全漏洞是不具体到Mac ,但第三方驱动程序和硬件。 So why choose apple for this demo?所以为什么要选择苹果为这个演示?
    Regards,关心,
    Benjamin本杰明

  2. 评论 “How To Hijack a MacBook in 60 Seconds or Less” |:. “如何劫持的MacBook在60秒或更少” | : 。 at mav|jones’ blog |:. 在微型飞行器|琼斯的博客| : 。 Says:说:
    January 3rd, 2007 at 8:59 pm 2007年1月3日在下午8时59分

    [...] “How To Hijack a MacBook in 60 Seconds or Less” [...] [ … … ] “如何劫持的MacBook在60秒或更少” [ … … ]

  3. 评论 anandbabut Says: anandbabut说:
    December 7th, 2007 at 12:42 am 2007年12月7日在上午12时42分

    hi

    i am anand from india我来自印度的阿南德

    i want know about how to hijack system @ enter into networking sytem plz help to me我想知道有关如何劫持系统@进入网络系统plz帮助我

Looking forward to hear your thoughts.期待着听到您的想法。



Please enter the code shown below ( to verify that you are human ) before you click Submit Comment . 请输入代码如下所示(以验证您是否人类) ,然后单击提交评论