Exploits in embedded systems
Details
Learn how to take control of devices, change wireless settings or obtain a copy of all video on devices with unpatched issues such as cross-site scripting, cross-site request forgery and authentication bypass.
Agenda:
• 7:00 pm - Social
• 7:30 pm - Embedded Systems or - the Unwitting Accomplice
• After - we go to Small Bar (http://www.smallbar.co.uk/locations-1/) on King street.
Presentation: Embedded Systems or - the Unwitting Accomplice
A brief look at a few IP cameras, wireless extenders and routers - a significant number have unpatched issues such as cross-site scripting, cross-site request forgery and authentication bypass, meaning we can take control of devices, change wireless settings and obtain a copy of all video on certain devices, all by having the unsuspecting user visit a web page we control.
Bio: Jamie Riden is currently a full time penetration tester holding 5 CCTs, though he has been a programmer and a sysadmin in the past - both for big and small systems. He has an Erdos number of 4 and likes building and breaking things.
