Full Disclosure mailing list archives

Re: USB Auto run function

From: Oscar Fajardo Sanchez <oscar.fajardo () atosorigin com>
Date: Fri, 18 Jun 2004 08:09:54 +0200


  This issue has been discused in pentest list. Take a look at: 

  http://archives.neohapsis.com/archives/sf/pentest/2004-05/0136.html

  Regards.

----- Original Message -----
From: "Aditya, ALD [ Aditya Lalit Deshmukh ]" 
<aditya.deshmukh () online gateway technolabs net>
Date: Friday, June 18, 2004 10:36 am
Subject: Re: [Full-disclosure] USB Auto run function

I have been interested in a potential exploit that may or may

not be an

issue, I read lately that a potential malicious file could enter

a system

via a USB Memory stick with a structured autorun.pif , and this

file would

operate even if the screen lock is activated .


this is true only for cdroms where the autorun has been enabled, 
winxp does scan for the removable drives but does not run the 
program based on the autorun but the type of files on the 
reemovable drive

-aditya
ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ
éb½êÞvë"axZÞx÷«²ÚGb¶*'¡ó[kj¯ðÃæj)mªÿrÿ

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


-----------------------------------------------------------------
This e-mail and the documents attached are confidential and intended solely
for the addressee; it may also be privileged. If you receive this e-mail
in error, please notify the sender immediately and destroy it.
As its integrity cannot be secured on the Internet, the Atos Origin group
liability cannot be triggered for the message content. Although the
sender endeavours to maintain a computer virus-free network, the sender does
not warrant that this transmission is virus-free and will not be liable for
any damages resulting from any virus transmitted.

"Este mensaje y los ficheros adjuntos pueden contener información
confidencial destinada solamente a la(s) persona(s) mencionadas
anteriormente. Pueden estar protegidos por secreto profesional Si usted
recibe este correo electrónico por error, gracias de informar inmediatamente
al remitente y destruir el mensaje.
Al no estar asegurada la integridad de este mensaje sobre la red, Atos
Origin no se hace responsable por su contenido. Su contenido no constituye
ningún compromiso para el grupo Atos Origin, salvo ratificación escrita por
ambas partes.
"Aunque se esfuerza al máximo por mantener su red libre de virus, el emisor
no puede garantizar nada al respecto y no será responsable de cualesquiera
daños que puedan resultar de una transmisión de virus"
------------------------------------------------------------------

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

USB Auto run function martin paul (Jun 17)
- Re: USB Auto run function Harlan Carvey (Jun 17)
- Re: USB Auto run function Lan Guy (Jun 17)
- Re: USB Auto run function Aditya, ALD [ Aditya Lalit Deshmukh ] (Jun 17)
- <Possible follow-ups>
- Re: USB Auto run function Oscar Fajardo Sanchez (Jun 18)
  - Re: USB Auto run function Harlan Carvey (Jun 18)
    - USB risks (continued) Gadi Evron (Jun 18)
    - Re: USB risks (continued) RSnake (Jun 19)
    - Re: Re: USB risks (continued) Harlan Carvey (Jun 19)
    - Re: Re: USB risks (continued) Jp Wise (Jun 19)
    - Re: USB risks (continued) Kevin Davis (Jun 19)
    - Re: USB risks (continued) Chris Withers (Jun 28)
    - Re: Re: USB risks (continued) RSnake (Jun 28)
    - Re: Re: USB risks (continued) Sam (Jun 28)
  - Re: USB Auto run function Ron DuFresne (Jun 18)