[Cryptech Tech] arm

Fredrik Thulin fredrik at thulin.net
Mon Jan 19 08:34:40 UTC 2015

Previous message: [Cryptech Tech] arm
Next message: [Cryptech Tech] arm
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Monday, January 19, 2015 08:55:55 AM Jakob Schlyter wrote:
...
> Are there any good examples on attacks on a USB host from something like a
> USB mass storage device or a USB HID?

Look for bugs found using "facedancer". Here is some kind of paper (only 
skimmed it) 

  https://www.blackhat.com/docs/eu-14/materials/eu-14-Schumilo-Dont-Trust-Your-USB-How-To-Find-Bugs-In-USB-Device-Drivers-wp.pdf

I couldn't find any good writeups about bugs found with that tool now, but I 
remember there was a steady stream of reports a while back - both bugs in 
various OS kernels, but also things like the X server having an exploitable 
printf formatting bug where it would log the USB vendor name to it's log file 
IIRC.

If we're not just talking about attacks on USB stacks, but on hosts, check out 
BadUSB - On Accessories that Turn Evil by Karsten Nohl + Jakob Lell  that 
Peter mentioned a while back on this list. Good talk.

  https://www.youtube.com/watch?v=nuruzFqMgIw

/Fredrik

Previous message: [Cryptech Tech] arm
Next message: [Cryptech Tech] arm
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Tech mailing list