Programmers Claim to Find Common Vulnerability in Mac, Windows Laptops

August 2nd, 2006 at 3:00 PM - News by Brad Cook

Jon "Johnny Cache" Ellch and David Maynor on Wednesday at the Black Hat 2006 conference in Las Vegas demonstrated a common wireless security flaw in Windows and Mac laptops. During their presentation, a video of which is on Brian Krebsi blog on the Washington Post Web site, they wirelessly connected a MacBook to a Dell and used the latter to take over control of the former. Mr. Maynor noted, however, that the flaw he exploited is a third party one that affects both Windows and Mac laptops; it is not inherent to Mac OS X.

Mr. Maynor told Mr. Krebs that they opted for a video version of their demonstration "because of the possibility that someone in the audience could intercept the traffic sent to a potentially live target and deconstruct the attack -- possibly to use the exploit in the wild against other MacBook users," the columnist wrote.

Mr. Maynor and Mr. Ellch said that the exploit doesnit require the laptop in question to be connected to a network. It simply has to have its wireless card turned on. In the video, Mr. Maynor turned the Dell laptop into a computer-to-computer wireless access point and then connected the MacBook to it via a third-party wireless card, not Appleis AirPort Extreme technology, although he told Mr. Krebs that the flaw exists there, too. He then took over the Mac, creating and deleting files on the desktop to show that he had access to it.

While Mr. Maynor was bothered by what he called the "Mac user base aura of smugness on security," he told Mr. Krebs that they hadnit set out to pick on Macs specifically. He said that he and Mr. Ellch have been in contact with Apple, Microsoft and third party wireless card vendors on fixes for the problem. He told Mr. Krebs that "had leaned on [them] pretty hard not to make this an issue about the Mac drivers -- mainly because Apple had not fixed the problem yet."

Commenting is not available in this section entry.

Recent Headlines - Updated November 22nd

Fri, 7:07 PM: Games - Soccer Sim Championship Manager 2010 Released for Mac
6:47 PM: Games - EA Publishes Original Monopoly for iPhone
6:15 PM: News - Original Apple I on Ebay for $50K, w/Letter from Steve Jobs
6:11 PM: Games - New iPhone Games: Secret of the Lost Cavern Ep 1, New DJ Nights, More
5:47 PM: Games - Star Trek D-A-C Game Headed to the Mac Next Month
4:57 PM: Product News - TidBITS Releases “Take Control of Syncing Data in Snow Leopard”
4:26 PM: John Martellaro's Blog - Particle Debris (week ending 11/20) Stationery Pads Go Poof
2:59 PM: Free on iTunes - Musée du Louvre, Art Lite, SketchBook Mobile X and More.
1:50 PM: Deal Brothers - Acer P215H bmid 21.5” Widescreen LCD Monitor: $139.99
11:24 AM: TMO Appearances - Jeff Gamet Shares More Holiday Gift Ideas on MacJury
10:43 AM: Product News - Cocktail 4.5 for Leopard Adds QuickLook Cache Clearing
10:06 AM: News - Hack Enables Mac OS X 10.6.2 on Netbooks

The Mac Observer Reader Specials

TypeStyler For Mac OS X is Now Shipping! Download The Free Fully Functional 60 Day Tryout at www.typestyler.com
OWC: Get the Right Memory for Your Mac Top Quality, Competitive Price, Lifetime Backed Free Expert Support + Installation Videos too! MacBook & mini 8GB, iMac 16GB, Mac Pro up to 32GB. Click here
If you're using a Mac, then you've gotta check out Full Tilt Poker for Mac. This Full Tilt Poker bonus code does the unthinkable, it actually rewards!
For the latest Apple products use Ciao, a price comparison website, to find laptops like MacBook Air. Then find the best prices on MP3 players and use our comparison tool to evaluate mobile phones like the Apple iPhone.
Laptop Hardware Provided by TechRestore - Overnight Mac & iPod Repairs.

Apple Stock Quote

AAPL: $199.92. Change: -0.59.
(Prices delayed up to 20 minutes.)
Discuss in our Apple Finance Board

Hot Topics

What's the buzz? These articles have TMO readers talking.

The Mac Needs a Two Button Mouse—Oh Wait! - 40 Comments
Ballmer: Microsoft Wants Back the Marketshare Apple is Taking - 29 Comments
Microsoft Dances Its Way Into Shoppers’ Hearts - 22 Comments
Apple’s App Store Rejections - 18 Comments
How AT&T Screwed up and Left an Opening for Verizon - 16 Comments
iPhone Competitor Forecast: Stormy with a Chance of Fail - 16 Comments

TMO Express

Join the TMO Express Daily Newsletter to get the latest Mac headlines in your e-mail every weekday. Find out more!

Top Deals From DealBrothers.com

Recent Features

Get the latest installments of TMO Columns, Podcasts, & Blogs.

© The Mac Observer, Inc. -- All rights reserved. All information presented on this site is copyrighted by The Mac Observer, Inc. except where otherwise noted. No portion of this site may be copied without express written consent. Other sites are invited to link to any aspect of this site provided that all content is presented in its original form and is not placed within another frame. The Mac Observer is an independent publication and has not been authorized, sponsored, or otherwise approved by Apple, Inc.