all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Pwn2Own Toronto 2023: Part 5 – The Exploit

Add to bookmarks
March 29, 2024, 8 a.m. | Urs Müller

Compass Security Blog blog.compass-security.com

In this final part of this series, we are finally going to explain how the stack-based buffer overflow vulnerability can be exploited to gain unauthenticated remote code execution (RCE) on the Synology BC500 camera.

buffer buffer overflow buffer overflow vulnerability camera can code code execution exploit exploited internet of things overflow pwn2own pwn2own toronto 2023 rce remote code remote code execution research series stack synology toronto unauthenticated vulnerability write-up

Visit resource

More from blog.compass-security.com / Compass Security Blog

New Burp Extension: JWT-scanner 1 week ago | blog.compass-security.com
application applications article authentication +20
Behind The Scenes Of Ransomware Attacks 3 weeks ago | blog.compass-security.com
apt attacks big blog +10
Pwn2Own Toronto 2023: Part 5 – The Exploit 1 month ago | blog.compass-security.com
buffer buffer overflow buffer overflow vulnerability camera +20
Pwn2Own Toronto 2023: Part 4 – Memory Corruption Analysis 1 month ago | blog.compass-security.com
analysis corruption internet of things manage +9
Pwn2Own Toronto 2023: Part 3 – Exploration 1 month ago | blog.compass-security.com
authentication can code code execution +19
Pwn2Own Toronto 2023: Part 2 – Exploring the Attack Surface 1 month ago | blog.compass-security.com
aim attack attack surface blog +16
Pwn2Own Toronto 2023: Part 1 – How it all started 1 month ago | blog.compass-security.com
analysts blog blog post camera +13
Manipulating LLMs – How to confuse ChatGPT 1 month, 2 weeks ago | blog.compass-security.com
ai algorithm chatgpt data +13
Luring the Threat: Lessons from ICS Honeypots in Ukraine and Germany 2 months ago | blog.compass-security.com
apt attacks components control +29

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Architect - Identity and Access Management Architect (80-100% | Hybrid option)

@ Swiss Re | Madrid, M, ES
View on infosec-jobs.com

Alternant - Consultant HSE (F-H-X)

@ Bureau Veritas Group | MULHOUSE, Grand Est, FR
View on infosec-jobs.com

Senior Risk/Cyber Security Analyst

@ Baker Hughes | IN-KA-BANGALORE-NEON BUILDING WEST TOWER
View on infosec-jobs.com

Offensive Security Engineer (University Grad)

@ Meta | Bellevue, WA | Menlo Park, CA | Seattle, WA | Washington, DC | New York City
View on infosec-jobs.com

Senior IAM Security Engineer

@ Norfolk Southern | Atlanta, GA, US, 30308
View on infosec-jobs.com
View more jobs