Filecry - The New Age of XXE

by Xiaoran Wang, Sergey Gorbaty
Sept. 18, 2017 1 comment www.blackhat.com belen_caty Management

Xml eXternal Entities (XXE) is one of the most deadly vulnerabilities on the Internet, and we will demonstrate how critical enterprise software packages are still vulnerable to these attacks today. In this action-packed presentation, we will demonstrate two 0-day vulnerabilities we identified in both popular server (Java) and client-side (Internet Explorer) technologies. The first vulnerability can be exploited with an attacker-controlled XML leading to arbitrary file ex-filtration on a target server even with all the Java protections enabled. The second vulnerability, allows an attacker to steal both arbitrary files on the local hard drive and secret information across origins with a malicious webpage. Therefore, effectively bypassing the Same Origin Policy and breaching the web-local separation. Both exploits are reliable and do not depend on memory corruptions.

https://www.blackhat.com/us-15/briefings.html#filecry-the-new-age-of-xxe

Avatar
Steven Ulm 1 month, 4 weeks ago

Well chosen title :) exploits and breaches are always of high interest to me!

Reply