Arch bugs in BSS Gleb Cherbov Security Researcher Digital Security (ERPScan)

Презентация:

Advertisements

Похожие презентации

© 2006 Cisco Systems, Inc. All rights reserved. SND v Module Summary An IPsec VPN is a collection of protocols that help you to hook up your company.

Advertisements

© 2006 Cisco Systems, Inc. All rights reserved.ONT v Implement Wireless Scalability Configuring Encryption and Authentication on Lightweight Access.

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA Chapter 3 Cisco PIX Firewall Technology and Features.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v MPLS VPN Technology Introducing VPNs.

© 2003, Cisco Systems, Inc. All rights reserved. CSPFA Chapter 9 Routing.

© 2004, Cisco Systems, Inc. All rights reserved. CSPFA Lesson 3 Cisco PIX Firewall Technology and Features.

Designing Security Services © 2004 Cisco Systems, Inc. All rights reserved. Implementing Network Security Using the SAFE Security Blueprints ARCH v

How To Upload and Download Flies using Filezilla

2 Web applications are easier to create than ever!

© 2006 Cisco Systems, Inc. All rights reserved. CVOICE v Configuring Voice Networks Configuring Dial Peers.

© 2006 Cisco Systems, Inc. All rights reserved. HIPS v Configuring Rules Configuring Rules Common to Windows and UNIX.

© 2006 Cisco Systems, Inc. All rights reserved. HIPS v Configuring CSA Installing and Configuring CSA MC.

© 2006 Cisco Systems, Inc. All rights reserved.ISCW v IPsec VPNs Implementing the Cisco VPN Client.

© 2005, Cisco Systems, Inc. All rights reserved. IPS v Lesson 4 Using IPS Device Manager.

© 2006 Cisco Systems, Inc. All rights reserved.CIPT2 v Monitor and Manage IP Telephony Introducing Cisco Unified CallManager Serviceability.

© 2005 Cisco Systems, Inc. All rights reserved.INTRO v Managing Your Network Environment Managing Cisco Devices.

© 2006 Cisco Systems, Inc. All rights reserved.CIPT2 v Secure IP Telephony Hardening the IP Phone.

© 2003, Cisco Systems, Inc. All rights reserved. CSVPN Lesson 17 Configure the Cisco Virtual Private Network 3000 Series Concentrator for LAN-to-LAN.

© 2005 Cisco Systems, Inc. All rights reserved.INTRO v Connecting to Remote Networks Using Packet Switching in WANs.

© 2006 Cisco Systems, Inc. All rights reserved.ONT v Implement the DiffServ QoS Model Implementing QoS Preclassify.

Транксрипт:

Arch bugs in BSS Gleb Cherbov Security Researcher Digital Security (ERPScan)

© , Digital Security Banking 2 Arch bugs in BSS

© , Digital Security 3 Arch bugs in BSS Internet banking. Client side

© , Digital Security How it worx 4 Arch bugs in BSS ABS WEB Server + App Server DBMS Operator Operators environment

© , Digital Security How it worx 5 Arch bugs in BSS ABS WEB Server + App Server DBMS Operator Operators environment

© , Digital Security How it worx 6 Arch bugs in BSS ABS WEB Server + App Server DBMS Operator Operators environment

© , Digital Security How it worx 7 Arch bugs in BSS ABS WEB Server + App Server DBMS Operator Operators environment

© , Digital Security Select a target 8 Arch bugs in BSS ABS WEB Server + App Server DBMS Operator Operators environment SQL injection Insider attack

© , Digital Security Select a target 9 Arch bugs in BSS ABS WEB Server + App Server DBMS Operator Operators environment

© , Digital Security Select a target 10 Arch bugs in BSS ABS WEB Server + App Server DBMS Operator Operators environment

© , Digital Security 11 Arch bugs in BSS Operators environment OperatorDBMS oper_login oper_pass dbo_admin Authentication

© , Digital Security 12 Arch bugs in BSS dbo_admin is the only account at DBMS dbo_admin has full access every operator can connect to DBMS directly oper auth on app side Dbo_admin

© , Digital Security 13 Arch bugs in BSS dbo_admin password is encrypted Lookin for a passwd and stored in a.cfg file near the app

© , Digital Security 14 Arch bugs in BSS Quote its impossible to decrypt it (c) BSS support

© , Digital Security 15 Arch bugs in BSS Lets take a look RSA modulus RSA private exp Unusual base64 alphabet

© , Digital Security 16 Arch bugs in BSS Lets take a look Well… looks like base64?

© , Digital Security 17 Arch bugs in BSS Also… Innovative password storage widely used in BSS products With the same hardcoded RSA key

© , Digital Security Malware 18 Arch bugs in BSS ABS WEB Server + App Server DBMS Operator Operators environment Get conf file Decrypt dbo_admin pass Wreak havoc

© , Digital Security 19 Arch bugs in BSS Attack vector? Insider Targeted attack Malware

© , Digital Security 20 Arch bugs in BSS Tricky data manipulations

Digital Security in Moscow: +7 (495) Digital Security in Saint Petersburg: +7 (812) Questions?