Skip to content

Details

Talk: VoIP Device Vulnerabilities

The Grandstream GXV3275 is an Android based VOIP video phone. Analysis of the phone shipped with an early firmware version identified a wide variety of vulnerabilities, all leading to remote code execution as root. This presentation will walk through a range of vulnerabilities in the phone,discussing how they were discovered, and the ways in which they could be exploited to achieve RCE as root.

Who:

Brendan Scarvell is a hoodie/hacker recently down from BNE, working as a penetration tester in Melbourne. He is part of TheGoonies CTF team, and has most likely made CTF challenges you have played at various security conferences such as Ruxcon.

Challenge:

Bring a laptop along.

Provided:

Ample drinks (beer/wine/non-alcoholic) and food.

Location:

Please keep in mind the location has now changed to 2 Riverside Quay.

If you have any difficulty getting there, please contact Mike for directions.

WHEN: PLEASE NOTE THIS EVENT IS ON THURSDAY - NOT THE USUAL WEDNESDAY TIME

Related topics

Events in Melbourne, AU

You may also like