DEVCORE

Tech Editorials #CVE #RCE #PHP

Security Alert: CVE-2024-4577 - PHP CGI Argument Injection Vulnerability

2024-06-06

While implementing PHP, the team did not notice the Best-Fit feature of encoding conversion within the Windows operating system. This oversight allows unauthenticated attackers to bypass the previous protection of CVE-2012-1823 by specific character sequences. Arbitrary code can be executed on remote PHP servers through the argument injection attack.

Tech Editorials #CVE #Pwn2Own #IoT

Pwn2Own Toronto 2022 : A 9-year-old bug in MikroTik RouterOS

Terrynini

2024-05-24

DEVCORE research team found a 9-year-old WAN bug on RouterOS, the product of MikroTik. Combined with another bug of the Canon printer, DEVCORE becomes the first team ever to successfully complete an attack chain in the brand new SOHO Smashup category of Pwn2Own. And DEVCORE also won the title of Master of Pwn in Pwn2Own Toronto 2022.

Tech Editorials #CVE #Pwn2Own #IoT

Your printer is not your printer ! - Hacking Printers at Pwn2Own Part II

Angelboy

2023-11-06

We identified Pre-auth RCE vulnerabilities in Canon printers (CVE-2023-0853, CVE-2023-0854) and also discovered Pre-auth RCE flaws in HP printers, which led to our achievement of the Master of Pwn title at Pwn2Own Toronto 2022. This article will detail the vulnerabilities and exploitation methods for both Canon and HP printers.

Tech Editorials #CVE #Pwn2Own #IoT

Your printer is not your printer ! - Hacking Printers at Pwn2Own Part I

Angelboy

2023-10-05

In 2021, we found Pre-auth RCE vulnerabilities(CVE-2022-24673 and CVE-2022-3942) in Canon and HP printers, and vulnerability(CVE-2021-44734) in Lexmark. We used these vulnerabilities to exploit Canon ImageCLASS MF644Cdw, HP Color LaserJet Pro MFP M283fdw and Lexmark MC3224i in Pwn2Own Austin 2021. Following we will describe the details of the Canon and HP vulnerabilities and exploitation.

Tech Editorials #Google

[REL] A Journey Into Hacking Google Search Appliance

2023-07-07

The Google Search Appliance (hereinafter referred to as GSA) is an enterprise search device launched by Google in 2002, used for indexing and retrieving internal or public network information

Tech Editorials #Advisory #CVE #RCE #Exchange #Pwn2Own

A New Attack Surface on MS Exchange Part 4 - ProxyRelay!

Orange Tsai

2022-10-19

With the prior knowledge in mind, I come up with a simple idea. It’s common to see multiple Exchange Servers in corporate networks for high availability and site resilience. Can we relay the NTLM authentication among Exchange Servers?

Red Team Assessment

Penetration Testing

Security Consulting

Security Training

Overview

Competitions and Awards

Enterprise Vulnerability Reports

International Conferences

CVE List

Company Overview

Team Members

Achievements

Corporate Social Responsibility

Job Opportunities

DEVCORE CONFERENCE

BLOG

Media Resources

Search

Contact

中文

English

BLOG

All Articles

Security Alert: CVE-2024-4577 - PHP CGI Argument Injection Vulnerability

Pwn2Own Toronto 2022 : A 9-year-old bug in MikroTik RouterOS

Terrynini

Your printer is not your printer ! - Hacking Printers at Pwn2Own Part II

Angelboy

Your printer is not your printer ! - Hacking Printers at Pwn2Own Part I

Angelboy

[REL] A Journey Into Hacking Google Search Appliance

A New Attack Surface on MS Exchange Part 4 - ProxyRelay!

Orange Tsai