Articles with tag: Iot
POSTED BY: Ioannis Stais / 31.05.2019

Hitting the Gym: The Anatomy of a Killer Workout (TROOPERS 2019)

On March 18th 2019 myself and Dimitrios Valsamaras delivered a presentation on cybersecurity vulnerabilities of "smart" fitness equipment, entitled "Hitting the Gym: The Anatomy of a Killer Workout" at the TROOPERS 2019 conference (NGI track).


POSTED BY: CENSUS / 22.03.2019

TROOPERS 2019

CENSUS participated at the Troopers 2019 IT Security conference (Next Generation Internet track) with a presentation by Ioannis Stais and Dimitrios Valsamaras entitled "Hitting the Gym: The Anatomy of a Killer Workout". The conference took place from March 18th to March 21st 2019 in Heidelberg, Germany.


POSTED BY: John Torakis / 02.10.2017

e2openplugin OpenWebif saveConfig remote code execution

CENSUS ID:CENSUS-2017-0001
CVE ID:CVE-2017-9807
Affected Products:e2openplugin OpenWebif (versions 0.2.9-1.2.4)
Class:Improper control of generation of code ('Code Injection') (CWE-94)
Discovered by:John Torakis

OpenWebif is a Web application that is used in IP TVs and media boxes to provide an easy-to-use Web Interface. It is written mostly in Python (Backend) and JavaScript (Frontend). It can be found in DreamBox devices.