Undermining Security Barriers - further adventures with USB presented at Infiltrate 2012

by Andy Davis,

Tags: Security

Summary : Although the concept of identifying and exploiting vulnerabilities in USB drivers is not new, the approach presented here is, as it provides the capability to test any USB platform or device (previous techniques have been either device or USB-host dependent). Although the approach is simple, its effectiveness has been clearly demonstrated by identifying vulnerabilities in USB drivers of many of the well-known operating systems. The presentation will cover typical USB vulnerability classes and also discuss the implications of this type of vulnerability for Endpoint security products. In addition, a new USB device-only fuzzer (called Frisbee Lite) will be discussed and publicly released at the conference.