Wireless gadget vulnerabilities: the Nikon Coolpix P1
It wasn't the camera’s picture capturing ability that caught our attention. Instead, it was the integrated hardware/software that allows the camera’s user to transfer pictures to a PC over a wireless network.
Questions such as, "How does this work?" "Are the pictures passed as plaintext?" "Can we interrupt the transfer process?" "Is there an authentication mechanism?" And "Can we inject our own pictures into the host PC?" all passed through our minds as we played with this "feature." So, like all curious researchers, we took a look and were quite surprised at what we found. This section outlines the transfer process, its flaws, and provides a clear example of how it could be abused to attack its user.
[ Read more ]