[Battlemesh] Exploit code on the wifi chip

Paul Fuxjaeger paul.fuxjaeger at gmx.at
Fri Apr 7 23:45:12 CEST 2017

On 07/04/2017 22:14, Ben West wrote:
> The ars tech story points refers to this story by Google. 
> https://googleprojectzero.blogspot.com/2017/04/over-air-exploiting-broadcoms-wi-fi_4.html

claims that:

"a vast amount of this research applies to other systems including the
same Wi-Fi SoCs"

"In the next blog post, we’ll see how we can use our assumed control of
the Wi-Fi SoC in order to further escalate our privileges into the
application processor, taking over the host’s operating system!"

uh oh.

Reminds me of a paper that tried to estimate "how many minutes it may
take for a baseband worm to spread over a large city", depending on the
current density of devices. Mind boggling stuff.

Will those worms install a proper mesh routing protocol while there at
it? :)

More information about the Battlemesh mailing list