Can you still trust your network card? - Agence nationale de la ...

More documents

Recommendations

Info

What will be described today We will present: ◮ architectures of modern network cards; ◮ remote administration protocols used in these cards; ◮ an actual vulnerability that we discovered; ◮ tools developed to debug a Broadcom NetXtreme card; ◮ exploitation proof of concept and demo; ◮ mitigations and workarounds to this attack. SGDSN/ANSSI – http://www.ssi.gouv.fr/trustnetworkcard 4/51
What won’t be described today This is not about: ◮ driver bugs; ◮ OS vulnerabilities. And please note that: ◮ we won’t provide the network packets and the tools used in the demo; ◮ we worked with the vendors and they issued a patch for the vulnerability. ◮ CVE-2010-0104: HP Small Form Factor or Microtower PC with Broadcom Integrated NIC Firmware, Remote Execution of Arbitrary Code http://www.ssi.gouv.fr/trustnetworkcard SGDSN/ANSSI – http://www.ssi.gouv.fr/trustnetworkcard 5/51
Page 1 and 2: Can you still trust your network ca
Page 3: Impacts on security If an attacker
Page 7 and 8: Network interface controller The Ne
Page 9 and 10: Network interface controller The Ne
Page 11 and 12: Remote administration protocols ASF
Page 17 and 18: Remote administration protocols RMC
Page 19 and 20: Remote administration protocols RMC
Page 21 and 22: Remote administration protocols Sum
Page 23 and 24: Protocol analysis Protocol security
Page 25 and 26: Protocol analysis Implementation pr
Page 27 and 28: The vulnerability Instrumenting the
Page 37 and 38: The vulnerability Crash analysis Ch
Page 39 and 40: The vulnerability Crash analysis Ex
Page 41 and 42: The vulnerability Crash analysis St
Page 43 and 44: Real impact What can be done in the
Page 45 and 46: Real impact Controlling the host Us
Page 47 and 48: Real impact Controlling the host De
Page 49 and 50: Real impact Controlling the host Co
Page 51: Real impact Controlling the host Qu

Can you still trust your network card? - Agence nationale de la ...

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?