I'd have to go dig up the articles but I would take a look at Black Hat 2005 presentations. The Toorcon stuff was mentioned at the conference but was not properly demonstrated. I don't see why you couldn't use it to do something like that as you can inject code into system memory.
In the Black Hat conference in 2005 a group introduced a few hacks to access system memory via IEE1394 (Firewire). In the Toorcon conference September 2005 an individual showed a working example of USB 2.0 being used for the same purpose. The main point of this was related to USB and Firewire being given access to system memory via DMA channels. The example shown during Toorcon was a memory dump of the computer while it was booting. Using a USB 2.0 device an attacker can modify system memory outside of the operating systems knowledge. Using a technique like this one could actually write to very low level routines on the computer without the operating system being aware of this.
Slashdot Mirror
I'd have to go dig up the articles but I would take a look at Black Hat 2005 presentations. The Toorcon stuff was mentioned at the conference but was not properly demonstrated. I don't see why you couldn't use it to do something like that as you can inject code into system memory.
In the Black Hat conference in 2005 a group introduced a few hacks to access system memory via IEE1394 (Firewire). In the Toorcon conference September 2005 an individual showed a working example of USB 2.0 being used for the same purpose. The main point of this was related to USB and Firewire being given access to system memory via DMA channels. The example shown during Toorcon was a memory dump of the computer while it was booting. Using a USB 2.0 device an attacker can modify system memory outside of the operating systems knowledge. Using a technique like this one could actually write to very low level routines on the computer without the operating system being aware of this.