The Kumara Brothers Hacked Windows Vista Loader
At the Black Hat conference, Indian hackers Nitin and Vipin Kumara demonstrated a self-made boot loader for Windows Vista, which allows you to bypass the code authorization mechanisms built into the operating system.
The VBootkit loader runs from the CD and loads the operating system, making the necessary changes in RAM and in the corresponding files on the fly . During the demonstration at the conference, the bootloader was able to obtain kernel privileges and successfully transfer permissions to the CMD shell under Vista, without having a Microsoft digital signature. Demonstration was held on Vista RC2.
Kumara said that the only reason they didn’t demonstrate on the final version of Vista was the high cost of the distribution.
')
This exploit has already been reported by Bruce Schneier . By the way, here’s a video interview with the very programmers from Windows Kernel Dev who created the original Vista bootloader, just hacked. These guys now do not envy.
via Slashdot
The VBootkit loader runs from the CD and loads the operating system, making the necessary changes in RAM and in the corresponding files on the fly . During the demonstration at the conference, the bootloader was able to obtain kernel privileges and successfully transfer permissions to the CMD shell under Vista, without having a Microsoft digital signature. Demonstration was held on Vista RC2.
Kumara said that the only reason they didn’t demonstrate on the final version of Vista was the high cost of the distribution.
')
This exploit has already been reported by Bruce Schneier . By the way, here’s a video interview with the very programmers from Windows Kernel Dev who created the original Vista bootloader, just hacked. These guys now do not envy.
via Slashdot
Source: https://habr.com/ru/post/6345/
All Articles