UNCOVERING OPENWRT REMOTE CODE EXECUTION (CVE-2020-7982)

UNCOVERING OPENWRT REMOTE CODE EXECUTION (CVE-2020-7982)

|
Introduction For ForAllSecure, I’ve been focusing on finding bugs in OpenWRT using their Mayhem software. My research on OpenWRT has been a combination of writing custom harnesses, running binaries of the box without recompilation, and manual inspection of code. I found this vulnerability initially by chance when I was preparing ... Read More

Uncovering OpenWRT Remote Code Execution (CVE-2020-7982)

|
Introduction For ForAllSecure, I’ve been focusing on finding bugs in OpenWRT using their Mayhem software. My research on OpenWRT has been a combination of writing custom harnesses, running binaries of the box without recompilation, and manual inspection of code. I found this vulnerability initially by chance when I was preparing ... Read More