On Mon, Jan 29, 2007 at 03:52:03PM -0600, Travers Buda wrote: > Well there is that proof-of-concept that debuted at BlackHat where > those researchers compromised the OS of a macintosh. I was under the > impression that they compromised it via the firmware, but it is > equally possible it was achieved via the driver.
This article seems to suggest it was a driver issue: http://blog.washingtonpost.com/securityfix/2006/08/the_macbook_wireless_exploit_i.html > At the very least you could do some nefarious things to the firmware > to say, retransmit hardware wep'ed traffic without wep. Which doesn't significantly change the security vs. having WEP enabled.