Infiltrate Security Conference OPEN CFP

TALK PROFILE

The story of escape sequence vulnerabilities

Vulnerability research
45

Historically, there were many dangerous and easy to exploit vulnerabilities in popular terminals that relied on escape sequences (sometimes called control sequences). Most of these relied on nowadays obsolete sequences. Terminal weaknesses related to escape sequences are still being found to this day. In my talk I will explore related past vulnerabilities and recent ones. I will talk about the issue of modern CLI programs not sanitizing bad content and show what can be done with popular programs, such as git. Hint: Even without zero-days in terminals, there is still much that can be done.

Back to Open CFP
(1)

Comments

Interested in Speaking?

We are pleased to announce the Call For Papers for INFILTRATE 2018 is now open. If you would like to present and have an offense-focused-fresh-content presentation, please submit an abstract, Bio and headshot to cfp@immunityinc.com. This information will be included on our Open CFP site, here, where the public can vote on which presentations they are most interested in seeing at INFILTRATE. Call for papers will close on December 14th, 2017. Shortly after this date, the winning speakers will be notified.

Some of the benefits of speaking at INFILTRATE are: