Maynor's Apple Wi-Fi Hack Finally Published || The Mac Observer

You're viewing an article in TMO's historic archive vault. Here, we've preserved the comments and how the site looked along with the article. Use this link to view the article on our current site:
Maynor's Apple Wi-Fi Hack Finally Published

Maynor's Apple Wi-Fi Hack Finally Published

by , 2:20 PM EDT, September 19th, 2007

David Maynor made a name for himself a year ago during the Black Hat Security Conference by demonstrating a wireless networking flaw that could potentially give someone unauthorized access to a Macintosh computer. His how-to is finally seeing the light of day -- over a year later -- at Uninformed.org, according to Computerworld.

Mr. Maynor demonstrated the security vulnerability on video instead of in person, and used a third party wireless networking card instead of Apple's AirPort Extreme card. As such, many people questioned the validity of his presentation.

Apple released a security fix in September 2006 for the type of threat Mr. Maynor described.

Mr. Maynor now claims he chose to use a third party wireless network card for his demonstration because that would be seen as less offensive to people. At the time of the Black Hat presentation, he said that he was bothered by what he called the "Mac user base aura of smugness on security."

He also stated that he held back the details of his security exploit because of a nondisclosure agreement with an unnamed company. That has now expired. "I published it now because I can publish it now," he said.

Even though Apple patched the potential security threat a year ago, Mr. Maynor thinks publishing his work now still holds value. In August 2007, however, his hack was mocked with a Pwnie award at the same conference he demonstrated at a year ago.

"There's a lot of interesting information in the paper that, if you're doing vulnerability research on Apple, you'd find useful," he said.

Observer Comments

Show: Subjects Only | Full Comments

Close Name:coaten Posts: 3071 Joined: 10 Oct 2001
Wed Sep 19, 2007 7:59 pm Subject:

Gosh, now that the findings are published, I'll have to be sure I don't put a third-party network card in my Mac - 'cos, you know, I couldn't live with the threat of someone in physical range maybe trying to exploit a hole that was plugged by Apple more than a year ago.

Thanks for the heads-up.

Reply | Quote

Close Name:Guest
Wed Sep 19, 2007 11:33 pm Subject:

You still don't get it. It works with an out of the box MacBook. That's how he discovered it. If you'd taken the time to read the paper you would have known. Incredibe: fanboys have to back off and they're still nasty.

Reply | Quote

Close Name:Guest
Wed Sep 19, 2007 11:34 pm Subject:

There is very little in this to prove that he actually found the hole in the first place. (Which was what a lot of the uproar was about.)
It seems a convenient excuse to blame an NDI for why he couldn't provide the exploit method until after a legitimate exploit was found. (Noting here that Apple themselves noted that the exploits they found were unrelated to what David Maynor was originally referring to.)

It's no more legitimate than me claiming to have found the Ping-of-death, but not allowed to tell anyone because of my NDI with a random company. It's a weak excuse.

Reply | Quote

Close Name:coaten Posts: 3071 Joined: 10 Oct 2001
Thu Sep 20, 2007 5:16 am Subject:

Quote
Guest wrote:
You still don't get it. It works with an out of the box MacBook. That's how he discovered it. If you'd taken the time to read the paper you would have known. Incredibe: fanboys have to back off and they're still nasty.

Gee, you're right. Let me re-word my response:

Gosh, now that the findings are published, I'll have to be sure I don't use my laptop within range of suspicious chacters - 'cos, you know, I couldn't live with the threat of someone in physical range maybe trying to exploit a hole that was plugged by Apple more than a year ago.

Thanks for the heads-up.

So what's the fucking difference? Little, really. Same outcome.

Reply | Quote

Close Name:Guest
Thu Sep 20, 2007 4:09 pm Subject:

Quote
coaten wrote:
Quote
Guest wrote:
You still don't get it. It works with an out of the box MacBook. That's how he discovered it. If you'd taken the time to read the paper you would have known. Incredibe: fanboys have to back off and they're still nasty.

Gee, you're right. Let me re-word my response:

Gosh, now that the findings are published, I'll have to be sure I don't use my laptop within range of suspicious chacters - 'cos, you know, I couldn't live with the threat of someone in physical range maybe trying to exploit a hole that was plugged by Apple more than a year ago.

Thanks for the heads-up.

So what's the fucking difference? Little, really. Same outcome.

Well, dispite your outburst of profanity, maybe you could like, go read the uniformed paper and realize that the title of Jeff's article doesn't accurately sum up what was done here. The uninformed.org article isn't about releasing the exploit, which an NDA expiring allowed him to do. The article is about his approach to doing security research on Mac OS X, and it simply uses that vulnerability as the real world example for the processes he uses. I think the point of the original reply though was to highlight the degree to which you reacted to the story without actually knowing the facts. Your responses were both very emotionally charged, but failed to grasp the details of what you were commenting on.

If you're into security research though, and are into Mac OS X, the uniformed piece is worth checking out.

Reply | Quote

Comment on this Article

Guest Posts Visible. Hide Them.
Back to top Page 1 of 1

You cannot edit your comments. You cannot delete your comments.

Comments are currently closed. Please email the author instead.

Recent Headlines - Updated November 8th

Sat, 7:58 PM: News - Apple TV 3.0.1 Update Fixes Missing Content Bug
Fri, 7:45 PM: Rumor - Taiwan Leak Shows Verizon UTMS/CDMA iPhone for Q3 2010
6:40 PM: News - iPhone Moves Into RadioShack
6:30 PM: News - Apple to Open Stunning Paris Apple Store in Le Louvre on Saturday
5:43 PM: Free on iTunes - Dictionary, Dictionary, Dictionary, And More
4:09 PM: John Martellaro's Blog - Particle Debris (week ending 11/6) Failure IS an Option
3:32 PM: Games - The Latest App Store Games: Gravity Sling, RocketBird, Ground Effect, Checkers!
2:25 PM: Games - Star Soccer 2010 for Mac Puts Gamers in Role of Up-and-Coming Player
2:15 PM: How-To - The Mysteries of Rosetta Housekeeping
1:33 PM: News - iPhone Game Developer Sued for Collecting User’s Cell Numbers
1:17 PM: Games - Warhammer Online Expands Trial Play Option
11:19 AM: Rumor - Apple May Be Bringing RFID to the iPhone

The Mac Observer Reader Specials

TypeStyler For Mac OS X is Now Shipping! Download The Free Fully Functional 60 Day Tryout at www.typestyler.com
RamJet Memory: Mac Pro 8-core 8GB Kit $199.99, 4GB Kits $109.99! Sale on MacBook and MacBook Pro 8GB kits $549.99! New MacBook DDR3 2GB for $49.99. iMac and Mac mini 4GB Kits for $79.99! 1TB SATA Hard Drives for $109.99! Click here
OWC: Get the Right Memory / Ram for your Mac. Top Quality, Competitive Prices, Lifetime Warranty. Expert Support and Video Installation Guidies too! 4.0GB Matched Sets from $87.99, Options up to 32GB. Click here
If you're using a Mac, then you've gotta check out Full Tilt Poker for Mac. This Full Tilt Poker bonus code does the unthinkable, it actually rewards!
For the latest Apple products use Ciao, a price comparison website, to find laptops like MacBook Air. Then find the best prices on MP3 players and use our comparison tool to evaluate mobile phones like the Apple iPhone.
Laptop Hardware Provided by TechRestore - Overnight Mac & iPod Repairs.