SQL Injection to MIPS Overflows: Rooting SOHO Routers
- Type
- Paper
- Tags
- embedded, SQL injection
- Authors
- Zachary Cutlip
- Event
- Black Hat USA 2012
- Indexed on
- May 20, 2014
- URL
- https://media.blackhat.com/bh-us-12/Briefings/Cutlip/BH_US_12_Cutlip_SQL_Exploitation_WP.pdf
- File name
- BH_US_12_Cutlip_SQL_Exploitation_WP.pdf
- File size
- 1.1 MB
- MD5
- 572d4eea91cbc449d684b28212496ff5
- SHA1
- 6e1a6afc081bd34dc2da7559f1c6a7388e992387
This presentation details an approach by which SQL injection is used to exploit unexposed buffer overflows, yielding remote, root-level access to Netgear wireless routers. Additionally, the same SQL injection can be used to extract arbitrary files, including plain-text passwords, from the file systems of the routers. This presentation guides the audience through the vulnerability discovery and exploitation process, concluding with a live demonstration. In the course of describing several vulnerabilities, I present effective investigation and exploitation techniques of interest to anyone analyzing SOHO routers and other embedded devices.
About us
Secdocs is a project aimed to index high-quality IT security and hacking documents. These are fetched from multiple data sources: events, conferences and generally from interwebs.
Statistics
Serving 8166 documents and 531.0 GB of hacking knowledge, indexed from 2419 authors from 163 security conferences.
Contribute
To support this site and keep it alive, you can click on the buttons below. Any help is really appreciated! This service is provided for free, but real money is needed to pay bills.
