Slashdot Mirror


Aging Security Vulnerability Still Allows PC Takeover

Jackson writes "Adam Boileau, a security consultant based in New Zealand has released a tool that can unlock Windows computers in seconds without the need for a password. By connecting a Linux machine to a Firewire port on the target machine, the tool can then modify Windows' password protection code and render it ineffective. Boileau said he did not release the tool publicly in 2006 because 'Microsoft was a little cagey about exactly whether Firewire memory access was a real security issue or not and we didn't want to cause any real trouble'. But now that a couple of years have passed and the issue has not resolved, Boileau decided to release the tool on his website."

6 of 282 comments (clear)

  1. Re:Breathtaking Arrogance or Stupidity? by deblau · · Score: 4, Funny
    You are either for false dichotomies or against them.

    Which is it?

    --
    This post expresses my opinion, not that of my employer. And yes, IAAL.
  2. Re:The hard part is... by clickclickdrone · · Score: 5, Funny

    >have the time to jack into one of my boxes
    You must have one sexy PC!

    --
    I want a list of atrocities done in your name - Recoil
  3. In related news... by muffen · · Score: 4, Funny

    ... it turns out, his site is vulnerable to the slashdot effect :)

  4. Re:Yes, yes, another anti-windows story by Oktober+Sunset · · Score: 3, Funny

    maybe they aren't smart, maybe they are dumb, that means even a dumb ass can crack windows security.

  5. *listens closely* by Stanistani · · Score: 4, Funny

    "So I tied an onion to my belt. Which was the style at the time. Now, to take the ferry cost a nickel, and in those days, nickels had pictures of bumblebees on 'em."

  6. Re:Yes, yes, another anti-windows story by sumdumass · · Score: 3, Funny

    hey now. Not all of us need this crack to bypass windows security.