[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] DLL hijacking with Autorun on a USB drive

To: dan@xxxxxxxxxxx
Subject: Re: [Full-disclosure] DLL hijacking with Autorun on a USB drive
From: paul.szabo@xxxxxxxxxxxxx
Date: Wed, 1 Sep 2010 11:49:19 +1000

Dan Kaminsky <dan@xxxxxxxxxxx> wrote:

> iexplore.exe has a security model. Explorer.exe doesn't ...

Very dim view. So, there is no way for a Windows user to access his
"desktop", e.g. any data on a CD or USB stick, in a safe way? Seems so
wasteful for MS to try and plug autorun viruses, then...

Thankfully, you are wrong. All decent OSs have some security. (Some are
more decent than others.)

Cheers, Paul

Paul Szabo   psz@xxxxxxxxxxxxxxxxx   http://www.maths.usyd.edu.au/u/psz/
School of Mathematics and Statistics   University of Sydney    Australia

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] DLL hijacking with Autorun on a USB drive
  - From: Dan Kaminsky

References:
- Re: [Full-disclosure] DLL hijacking with Autorun on a USB drive
  - From: Dan Kaminsky

Prev by Date: Re: [Full-disclosure] DLL hijacking with Autorun on a USB drive
Next by Date: Re: [Full-disclosure] DLL hijacking with Autorun on a USB drive
Previous by thread: Re: [Full-disclosure] DLL hijacking with Autorun on a USB drive
Next by thread: Re: [Full-disclosure] DLL hijacking with Autorun on a USB drive
Index(es):
- Date
- Thread