Re: Security with USB Devices

From: Michael Parker (mparker_at_rim.com)
Date: 07/27/05

  • Next message: Terry Vernon: "Re: Security with USB Devices" 
    Date: Tue, 26 Jul 2005 18:05:13 -0400
To: <newyorkuser@gmail.com>, <pen-test@securityfocus.com>

    There was recently (Monday of this week) a vulnerability disclosed with regards to a flaw in the USB driver that affected Windows systems (verified) and *nix systems (suspected). I don't have a directlink but it was on slashdot.

    Michael Parker, BA (Hon), GSEC, MBCS

    Information Security Coordinator
    Research In Motion

    Phone: 519.888.7465
    Cell: 519.573.4782
    mparker@rim.com

    -----Original Message-----
    From: NewYork User <newyorkuser@gmail.com>
    To: pen-test@securityfocus.com <pen-test@securityfocus.com>
    Sent: Tue Jul 26 10:51:40 2005
    Subject: Security with USB Devices

    List,

    Does any one know a good program to "autorun" from USB drive on a
    windows 2000 or an XP machine? I have tried the traditional
    Autorun.inf but didn't have any luck. I looked up in google but
    couldn't find any useful stuff. I saw some commercial programs to use
    for backup etc..But its not of any use if I want to prove my point
    that data can be vulnerable if use of USB drives is not restricted
    either by using a program or any kind of security control. I created a
    simple batch file to open up a Netcat listener. It is pretty common
    for the users lock their machines and leave their desks. I'm looking
    for any kind of scripts that can run a batch file automatically or can
    copy the data automatically. Any ideas?

    Thanks for your help.

    ---------------------------------------------------------------------
    This transmission (including any attachments) may contain confidential information, privileged material (including material protected by the solicitor-client or other applicable privileges), or constitute non-public information. Any use of this information by anyone other than the intended recipient is prohibited. If you have received this transmission in error, please immediately reply to the sender and delete this information from your system. Use, dissemination, distribution, or reproduction of this transmission by unintended recipients is not authorized and may be unlawful.

  • Next message: Terry Vernon: "Re: Security with USB Devices"

    Relevant Pages

    • RE: Disabling USB mass storage
      ... intentioned security put in place. ... software or hardware is installed we'd rather prevent USB drives from coming ... Subject: Disabling USB mass storage ... We have a policy at my current job that prevents the use of USB drives. ...
      (Focus-Microsoft)
    • Security with USB Devices
      ... Does any one know a good program to "autorun" from USB drive on a ... windows 2000 or an XP machine? ... that data can be vulnerable if use of USB drives is not restricted ... simple batch file to open up a Netcat listener. ...
      (Pen-Test)
    • Re: Is GoToMyPC correct when they state....
      ... With gotomypc, you can connect to your company PC from ... it listens to their webserver and waits for connections ... This is actually a security plus. ... There are even tools to prevent USB drives from being used :-) ...
      (comp.security.firewalls)
    • Re: upload to usb jump drive
      ... >> One thing few people consider is the relative lack of security these ... >> USB drives have. ... and are likely to lose data when they lose those keys... ... That's why I like the SD Plus card...which stays in my wallet. ...
      (rec.photo.digital)
    • [NT] Buffer Overflow in Microsoft Rasapi32.dll
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... The overflow occurs when the code that parses RAS phonebook entries runs; ... - Create a batch file adding your account to the "administrators" group ...
      (Securiteam)