No Hat 2020 - Eran Shimony - 60 CVEs in 60 Days

40 Просмотры

  • Спасибо! Поделитесь с друзьями!

    Вам не понравилось видео. Спасибо за то что поделились своим мнением!

admin
Издатель
In recent years, the most effective way to discover new vulnerabilities is considered to be fuzzing. I will present a complementary approach to fuzzing. By using the method, which is quite easy, I managed to get over 60 CVEs across multiple major vendors in only one month. Some things never die. In this session, I’ll show that a huge amount of software is still vulnerable to DLL Hijacking and Symlinks abuse and may allow attackers to escalate their privileges or DoS a machine. I’ll demonstrate how I generalized these two techniques within an automated testing system called Ichanea, with the aim - finding new vulnerabilities. Our mindset was - choose software that is prone to be vulnerable: installers, update programs, and services. These types of software are often privileged. Therefore, they are good candidates for exploitation using symlink or DLL Hijacking attacks. We’re only scratching the surface; I am positive that there are additional attack vectors that could be widely implemented to achieve similar results.


Eran Shimony is a security researcher at CyberArk. Eran has an extensive background in security research that includes years of experience in malware analysis and vulnerability research on multiple platforms. With a growing interest in logical vulnerabilities, he has several dozens of acknowledged vulnerabilities across major vendors, like Microsoft, Intel, Samsung, and many others. Besides finding security bugs, he enjoys making cocktails and listening to heavy metal and classical music.
Категория
Установка пластиковых окон
Комментариев нет.

Следующее