Explore critical vulnerabilities in network equipment through this NorthSec conference talk by Pedro Ribeiro. Delve into common vulnerability patterns affecting consumer and enterprise routers, firewalls, VPNs, and other network devices. Gain insights into the history of these vulnerabilities, their causes, and future trends. Learn about specific examples of past and present vulnerabilities, identify recurring patterns, and understand the circumstances leading to their occurrence. Discover how ongoing device hardening efforts are making exploitation more challenging, yet not impossible. Benefit from Ribeiro's extensive experience in penetration testing, reverse engineering, and vulnerability research, including his contributions to numerous CVEs and Metasploit exploits.
Critical Vulnerabilities in Network Equipment - Past, Present, and Future
Overview
Syllabus
Introduction
Routers
Past
Current
CV6563 Example
ASLR
Logical Vulnerability
Authentication Bypass
Overwrite
Attack sequence
Onesided vulnerabilities
Present Vulnerabilities
Future Vulnerabilities
Example
Comparison
Taught by
NorthSec
