GulfStream GVI Remote Hijack Security Hole

"The GVI integrated network configuration may allow increased
connectivity with external network sources and will have more
interconnected networks and systems, such as passenger entertainment
and information services, than previous Gulfstream airplane models.
This may allow the exploitation of network security vulnerabilities and
increase risks potentially resulting in unsafe conditions for the
airplane and its occupants.

This potential exploitation of security vulnerabilities may result
in intentional or unintentional destruction, disruption, degradation,
or exploitation of data and systems critical to the safety and
maintenance of the airplane. The existing regulations and guidance
material did not anticipate these types of system architectures.
Furthermore, 14 CFR regulations and current system safety assessment
policy and techniques do not address potential security vulnerabilities
which could be exploited by unauthorized access to airplane networks
and servers. Therefore, these special conditions and a means of
compliance are being issued to ensure that the security (i.e.,
confidentiality, integrity, and availability) of airplane systems is
not compromised by unauthorized wired or wireless electronic
connections between airplane systems and networks and the passenger
entertainment domain." From the Federal Register


see more via Cryptome.