Re: IOS Rookit: the sky isn't falling (yet)

• From: Sean Donelan
• Date: Tue May 27 13:23:02 2008

• List-archive: <http://mailman.nanog.org/pipermail/nanog>
• List-help: <mailto:[email protected]?subject=help>
• List-id: North American Network Operators Group <nanog.nanog.org>
• List-post: <mailto:[email protected]>
• List-subscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:[email protected]?subject=subscribe>
• List-unsubscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:[email protected]?subject=unsubscribe>

Perhaps the above should be simplified.

Running a hacked/modded IOS version is a dangerous prospect.

This seems like such a non-event because what is the exploit path to load the image? There needs to be a primary exploit to load the malware image.

*yawn*

I guess we will wait for the next one before waking up, than.

Other things you could install rootkits on, if you can load
unauthorized images on the device:

Even old fashion printing presses are vulnerable to the old fashion
version of a rootkit.  If you could replace the printing press plates
with unauthorized plates, you could change what the printing press
printed.  Modifying printing plates is the easy part, getting the
unauthorized printing plates on the printing press is the trick.

• Follow-Ups:
  • Re: IOS Rookit: the sky isn't falling (yet) Gadi Evron

• References:
  • IOS Rookit: the sky isn't falling (yet) Nicolas FISCHBACH
  • Re: IOS Rookit: the sky isn't falling (yet) Alexander Harrowell
  • Re: IOS Rookit: the sky isn't falling (yet) Jared Mauch
  • Re: IOS Rookit: the sky isn't falling (yet) Gadi Evron

• Prev by Date: RE: IOS Rookit: the sky isn't falling (yet)
• Next by Date: Re: IOS Rookit: running hacked binaries certainly places you at risk!
• Date Index
• Thread Index
• Author Index
• Historical