Presentations - Exploiting USB/IP in Linux

  • Location: Security Dome
  • Speaker: Ignat Korchagin
  • Date and time: 20. October 2017. 16:30 - 17:10

USB/IP is a framework for sharing USB devices over the network. Being both powerful and dangerous technology it requires great attention to security of implementation. Unfortunately, Linux kernel implementation had an oversight, which resulted in CVE-2016-3955 with vulnerability score of 10 out of 10. Who is affected? The conditions of the exploitability of the above vulnerability are outlined.


Sponsors:

Gold
Gold
Gold
Silver
Silver
Silver
Silver
Silver
Silver
Bronze
JOB
Technical