44CON LONDON 2015 has ended
Back To Schedule
Thursday, September 10 • 20:30 - 21:29
Playing with Fire: Attacking the FireEye MPS

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Note: This talk will not be recorded.
This talk will give an overview of a number of vulnerabilities in FireEye's Malware Protection System (MPS) that were recently discovered (and which are patched in the interim). These range from command injections in the management web interface over local privilege escalation vulnerabilities to exploits that allow a full compromise of the system by simply sending a malicious file over the network and exploiting bugs in the analysis process.
We will discuss the inherent attack exposure of certain types of network security controls, together with architectural recommendations how those could be addressed.

avatar for Felix Wilhelm

Felix Wilhelm

Felix is a security researcher working for ERNW GmbH. His main interests are application security, reverse engineering and virtualization security. Felix has disclosed critical vulnerabilities in popular software such as Hyper-V, Xen, Typo3 or IBM GPFS and has presented his work... Read More →

Thursday September 10, 2015 20:30 - 21:29 BST
Track 1

Attendees (0)