Slashdot Mirror

← Back to Stories (view on slashdot.org)

Buffer Overflow Found in RFID Passport Readers

Posted by CowboyNeal on from the never-too-careful dept.

epee1221 writes "Wired ran a story describing Lukas Grunwald's Defcon talk on an attack on airport passport readers. After extracting data from the (read-only) chip in a legitimate passport, he placed a version of the data with an altered passport photo (JPEG2000 is used in these chips) into a writable chip. The altered photo created a buffer overflow in two RFID readers he tested, causing both to crash. Grunwald suggests that vendors are typically using off-the-shelf JPEG2000 libraries, which would make the vulnerability common."

1 of 96 comments (clear)

  1. This is the reason closed source is good by LiquidCoooled · · Score: 0, Flamebait

    With closed source protected access software this kind of thing would not happen.
    The open source commie pig brigade can't go messing with your plans.

    (tongue in cheek of course)

    --
    liqbase :: faster than paper