MacBook Wi-Fi Hijack Details Finally Released

Wick3d Gam3s writes "Hacker David Maynor attempted to put the strange tale of the Macbook Wifi hack to rest, and offered an apology for mistakes made. All this and a live demo of the takeover exploit was made at a Black Hat DC event yesterday. Maynor promised to release e-mail exchanges, crash/panic logs and exploit code in an effort to clear his tarnished name. Said Maynor: 'I screwed up a bit [at last year's Black Hat in Las Vegas]. I probably shouldn't have used an Apple machine in the video demo and I definitely should not have discussed it a journalist ahead of time ... I made mistakes, I screwed up. You can blame me for a lot of things but don't say we didn't find this and give all the information to Apple.'"

Re:Crash? I thought the original claim was...

[Rosyna]

Frankly, I wouldn't even be surprised if he did some old-fashioned reverse-engineering of the patch to create the exploit for the older boxes.

And then used his time machine to go back in time to before the bug was patched and announce the exploit?

No, his original claim was a farce (hell, look at the video, there was only one wireless device available according to ifconfig). Apple then audited their code, found 3 bugs. He took one of the bugs mentioned, found out how to trigger it, triggered the crash and now claims he was right all along.

The problem is that what's happening now doesn't support his original claims. The original claims were he could hijack a MacBook in under 60 seconds and gain completely control of it. Now all he's getting is a crash with no control.

Re:Crash? I thought the original claim was...

[AchiIIe]

That is correct, the original video was faked... They prob were close but did not want to wait.
Here is a video I made debunking their proof: http://video.google.com/videoplay?docid=1468187717 11399295&hl=en
My guess is that they got a buffer overflow but had not yet found the correct location in memory to write their shellcode. They still have not...