Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
Re: USB delivered attacks
From: H D Moore (sflistdigitaloffense.net)
Date: Tue Jun 01 2004 - 18:39:28 CDT
Some friends and I looked into this a while back as a way to bypass the
security of kiosk machines. We discovered that Windows 2000 (and possibly
XP as well) will not execute AutoRun scripts on USB or other "removable
storage" media types. Even though there is a registry key that can be
changed that "enables" AutoRun, it does not work.
"Autoplay is triggered by a Media Change Notification (MCN) message from
the CD-ROM driver. If the Windows 2000 interface does not receive this
message, Autoplay does not operate, regardless of the value of this"
On Thursday 27 May 2004 21:06, Jerry Shenk wrote:
> I recently inserted some guy's USB drive into a machine and was a but
> surprised when it went into an auto-run sequence. I think turning off
> auto-run is a REALLY good idea. On a USB drive, it seems like it could