Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1038

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2004-1038
Last Modified 05 Sep 2008 04:40:10
Published 01 Mar 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-1038

Summary

A design error in the IEEE1394 specification allows attackers with physical access to a device to read and write to sensitive memory using a modified FireWire/IEEE 1394 client, thus bypassing intended restrictions that would normally require greater degrees of physical access to exploit. NOTE: this was reported in 2008 to affect Windows Vista, but some Linux-based operating systems have protection mechanisms against this attack.

Vulnerable Systems

Application

  • Firewire Ieee 1394


References

XF - firewire-ieee1394-interface-installed(18041)

MISC - http://www.theage.com.au/news/security/hack-into-a-windows-pc-no-password-needed/2008/03/04/1204402423638.html

BUGTRAQ - 20080310 Re: [Full-disclosure] Firewire Attack on Windows Vista

BUGTRAQ - 20080309 Re: Firewire Attack on Windows Vista

BUGTRAQ - 20080310 RE: [Full-disclosure] Firewire Attack on Windows Vista

BUGTRAQ - 20080309 Re: [Full-disclosure] Firewire Attack on Windows Vista

BUGTRAQ - 20080305 RE: Firewire Attack on Windows Vista

BUGTRAQ - 20080305 Re: Firewire Attack on Windows Vista

BUGTRAQ - 20080305 Firewire Attack on Windows Vista

MISC - http://www.sec-consult.com/fileadmin/Whitepapers/Vista_Physical_Attacks.pdf

MISC - http://storm.net.nz/static/files/ab_firewire_rux2k6-final.pdf

MISC - http://storm.net.nz/projects/16

MISC - http://pacsec.jp/advisories.html

MISC - http://md.hudora.de/presentations/firewire/2005-firewire-cansecwest.pdf

BUGTRAQ - 20041026 pacsec.jp advisory: Firewire/IEEE 1394 Considered Harmful to Physical Security

MISC - http://it.slashdot.org/article.pl?sid=08/03/04/1258210

BUGTRAQ - 20080308 RE: [Full-disclosure] Firewire Attack on Windows Vista

BUGTRAQ - 20080308 Re: [Full-disclosure] Firewire Attack on Windows Vista

BUGTRAQ - 20080307 Re: Firewire Attack on Windows Vista

BUGTRAQ - 20080306 RE: Firewire Attack on Windows Vista

BUGTRAQ - 20080306 Re: Firewire Attack on Windows Vista


Last Updated: 27 May 2016 10:38:52