![Exploits and vulnerabilities. [Research Saturday]](https://images.musicrad.io/resizer/?image=aHR0cHM6Ly9tZWdhcGhvbmUuaW1naXgubmV0L3BvZGNhc3RzLzU4YWI3YWUwLWRlZjgtMTFlYS1iMzRjLWIzNWIyMDhiMDUzOS9pbWFnZS9kYWlseS1wb2RjYXN0LWNvdmVyLWFydC1jdy5wbmc_aXhsaWI9cmFpbHMtNC4zLjEmbWF4LXc9MzAwMCZtYXgtaD0zMDAwJmZpdD1jcm9wJmF1dG89Zm9ybWF0LGNvbXByZXNz&width=600&signature=Y09Mgt0BNxH8YtVOWDhXSvDqXvs=)
Exploits and vulnerabilities. [Research Saturday]
Ryan from Bishop Fox joins to describe their work on "Building an Exploit for FortiGate Vulnerability CVE-2023-27997." After Lexfo published details of a pre-authentication remote code injection vulnerability in the Fortinet SSL VPN, Bishop Fox worked up a proof of concept demo.
This research share how they were able to create that proof-of-concept exploit, step by step. The researchers state "Our debugging environment consisted of a FortiGate 7.2.4 virtual machine which we modified to disable some self-verification functionality. After bypassing these integrity checks, we were able to install an SSH server, BusyBox, and debugging tools such as GDB."
The research can be found here:
Building an Exploit for FortiGate Vulnerability CVE-2023-27997
-
Heart UK