Check out the new USENIX Web site. next up previous
Next: Recommendations Up: Infection Techniques Previous: Recommendations

Desktop Conduits

``Conduits'', in the form of Dynamic Link Libraries (DLLs), interface with the HotSync Manager program on the desktop PC. They enable the transfer of data between the Palm OS device and a specific desktop application during the HotSync process.

The standard conduits for Palm OS transfer Address, Date Book, Memo Pad, and To Do List data to the Palm Desktop software. Palm Expense data interfaces directly with Microsoft Excel. Third-party conduits exist which replace the standard conduits and will route data to Microsoft Outlook or Exchange, Lotus Notes, Novell GroupWise, or other Personal Information Manager (PIM).

Conduits are an extremely likely entry point for the cross-architecture transfer of malicious code. Aside from virus infection (such as a macro virus through the use of Microsoft Word or Excel macro functionality), malicious code transferred from the Palm device to the desktop through a conduit could exploit a known security problem in the destination desktop application. This could lead to compromise of the desktop machine (such as the execution of arbitrary code, theft or erasure of data, or elevation of privilege).

Subsections

Kingpin
2001-05-09