Sujet : Re: undocumented backdoor found in ESP32
De : nospam (at) *nospam* example.net (D)
Groupes : comp.miscDate : 09. Mar 2025, 22:37:27
Autres entêtes
Organisation : i2pn2 (i2pn.org)
Message-ID : <1c29878b-8d2a-49fe-0bd8-12fbc6349f76@example.net>
References : 1 2
On Sun, 9 Mar 2025, John McCue wrote:
In comp.misc Salvador Mirzo <smirzo@example.com> wrote:
Undocumented "backdoor" found in Bluetooth chip used by a billion devices
Bill Toulas March 8, 2025 11:12 AM
>
The ubiquitous ESP32 microchip made by Chinese manufacturer Espressif
and used by over 1 billion units as of 2023 contains an undocumented
"backdoor" that could be leveraged for attacks.
>
Looks like there is more than meets the eye:
>
This refutes the claim that researchers found a "backdoor"
https://darkmentor.com/blog/esp32_non-backdoor/
>
<snip>
>
YMMV
From the site:
'Vendor-specific commands in Bluetooth effectively constitute a “private API”, and a company’s choice to not publicly document their private API does not constitute a “backdoor”.'
Strange argument.
If I buy a system, with an undocumented API that let's other people into my system, without me wanting this, I would consider it a backdoor.
undocumented backdoor found in ESP32
Re: undocumented backdoor found in ESP32