Linked by Thom Holwerda on Sat 23rd Jul 2005 16:54 UTC
Privacy, Security, Encryption Vulnerabilities in USB drivers for Windows could allow an attacker to take control of locked workstations using a specially programmed Universal Serial Bus device, according to an executive from SPI Dynamics, which discovered the security hole. However, SPI tested attacks on Windows systems, but any operating system that is USB-compliant is probably vulnerable.
Permalink for comment 8119
To read all comments associated with this story, please click here.
I don't get this...
by 1c3d0g on Sat 23rd Jul 2005 17:24 UTC
1c3d0g
Member since:
2005-07-06

"Standards developed by the USB Implementers Forum Inc., the nonprofit corporation that governs USB, don't consider security, he said."

What the hell?! Why not? In this day and age, I find it very hard to believe that nobody at the USB Implementers Forum thought about the possibility of buffer overflows and the like being exploited, which could be used maliciously by some people out there. This really is a sad state of affairs and it needs to be seriously addressed by the forum.

Reply Score: 3