all InfoSec news
Fortinet FortiWLM Deep-Dive, IOCs, and the Almost Story of the “Forti Forty”
Security Boulevard securityboulevard.com
Earlier this year, soon after reproducing a remote code execution vulnerability for the Fortinet FortiNAC, I was on the hunt for a set of new research targets. Fortinet seemed like a decent place to start given the variety of lesser-known security appliances I had noticed while searching for the FortiNAC firmware. The first target I landed on was the Fortinet Wireless LAN Manager (WLM). The security audit of this appliance began what became the successful, but failed journey of what …
attack blogs code code execution disclosures dive fortinac fortinet fortinet fortinac hunt iocs remote code remote code execution research security start story vulnerability