Intel has issued patches for flaws in its Centrino device drivers and ProSet management software that affect the security of the wireless products. One could allow an attacker to break into a PC via Wi-Fi or even create a worm that jumps from one wireless-enabled laptop to another, provided the computers are within each other’s range. Another security hole makes the system vulnerable to attacks that let a malicious user gain additional privileges.
Does this affect their Windows drivers or also the drivers found in the linux kernel for their cards?
I very much doubt that this affects any other platform than windows as the level of code review is much higher on the open source side, but just wanted to be sure.
This is a perfect example of why Theo of the OpenBSD project is against binary blobs and drivers. You can’t critically analyse the security and performance of a “black box,” and without that ability your users are open to security disasters such as those above.
I wonder if this has any thing to do with the demo at the black hat security conference…
/me thinks it might…