[7961] in bugtraq
NT floppy driver makes risky assumptions
daemon@ATHENA.MIT.EDU (JAPH David Nicol)
Thu Sep 17 13:24:56 1998
Date: Wed, 16 Sep 1998 15:43:20 -0500
Reply-To: JAPH David Nicol <david@KASEY.UMKC.EDU>
From: JAPH David Nicol <david@KASEY.UMKC.EDU>
To: BUGTRAQ@NETSPACE.ORG
Got an NT 4.0 machine and if you stick a "red hat rescue.img" floppy
in the floppy slot you get an instant blue screen.
This does not appear to have been mentioned in bugtraq archives and
could become a most devastating exploit opportunity, by messing up the
file system just enough ... That's why all this "anti-virus" software
is around, right? Because of the unpatched buffer overflows and so
forth in the microsoft file system reading code? Never mind, I guess
"reading a suspicious floppy disk is inherently unsafe" is common
knowledge.
______________________________________________________________________
David Nicol 816.235.1187 UMKC Network Operations david@news.umkc.edu
"I go to bakeries all day long." -- JR
