{"id":50676,"date":"2023-10-28T00:48:14","date_gmt":"2023-10-27T21:48:14","guid":{"rendered":"https:\/\/onhexgroup.ir\/?p=4887"},"modified":"2023-10-31T09:00:23","modified_gmt":"2023-10-31T05:30:23","slug":"%d9%86%da%af%d8%a7%d9%87%db%8c-%d8%a8%d9%87-%d9%85%d8%b3%d8%a7%d8%a8%d9%82%d8%a7%d8%aa-pwn2own-toronto-2023","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/%d9%86%da%af%d8%a7%d9%87%db%8c-%d8%a8%d9%87-%d9%85%d8%b3%d8%a7%d8%a8%d9%82%d8%a7%d8%aa-pwn2own-toronto-2023\/","title":{"rendered":"\u0646\u06af\u0627\u0647\u06cc \u0628\u0647 \u0645\u0633\u0627\u0628\u0642\u0627\u062a Pwn2Own Toronto 2023"},"content":{"rendered":"<p><span class=\"rt-reading-time\"><span class=\"rt-label rt-prefix\">\u0632\u0645\u0627\u0646 \u0645\u0637\u0627\u0644\u0639\u0647: <\/span> <span class=\"rt-time\">10<\/span> <span class=\"rt-label rt-postfix\">\u062f\u0642\u06cc\u0642\u0647<\/span><\/span><\/p>\n<p>\u0645\u0633\u0627\u0628\u0642\u0627\u062a Pwn2Own Toronto 2023 \u0637\u06cc 4 \u0631\u0648\u0632\u060c 24 \u062a\u0627 27 \u0627\u06a9\u062a\u0628\u0631 \u060c \u0628\u0631\u06af\u0632\u0627\u0631 \u0634\u062f \u0648 \u062f\u0631 \u0646\u0647\u0627\u06cc\u062a Team Viettel \u0628\u0627 \u06a9\u0633\u0628 180 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 30 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0645\u0642\u0627\u0645 \u0627\u0648\u0644 \u0631\u0648 \u0628\u062f\u0633\u062a \u0622\u0648\u0631\u062f. \u0628\u0631\u0627\u06cc \u0622\u0634\u0646\u0627\u06cc\u06cc \u0628\u0627 \u0627\u06cc\u0646 \u0645\u0633\u0627\u0628\u0642\u0627\u062a\u060c \u0645\u06cc\u062a\u0648\u0646\u06cc\u062f \u0627\u06cc\u0646 \u0644\u06cc\u0646\u06a9 \u0645\u0634\u0627\u0647\u062f\u0647 \u06a9\u0646\u06cc\u062f.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4940\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023.webp\" sizes=\"auto, (max-width: 720px) 100vw, 720px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023.webp 720w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-33.webp 300w\" alt=\"\u0646\u062a\u06cc\u062c\u0647 \u0645\u0633\u0627\u0628\u0642\u0627\u062a\" width=\"720\" height=\"405\" data-dominant-color=\"586e73\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>\u062f\u0631 \u0627\u06cc\u0646 \u0645\u0633\u0627\u0628\u0642\u0627\u062a\u060c \u062f\u0631 \u0645\u062c\u0645\u0648\u0639 1,038,500 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0648 58 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0632\u06cc\u0631\u0648\u062f\u06cc \u0645\u0646\u062d\u0635\u0631 \u0628\u0647 \u0641\u0631\u062f \u06a9\u0634\u0641 \u0634\u062f\u0647 \u0648 \u0628\u0647 \u0633\u0627\u0632\u0646\u062f\u0647 \u0647\u0627 \u06af\u0632\u0627\u0631\u0634 \u062f\u0627\u062f\u0646 \u062a\u0627 \u0646\u0647\u0627\u06cc\u062a\u0627 \u0637\u06cc 90 \u0631\u0648\u0632 \u060c \u0627\u0648\u0646\u0627\u0631\u0648 \u0627\u0635\u0644\u0627\u062d \u06a9\u0646\u0646. \u0627\u062d\u062a\u0645\u0627\u0644\u0627 \u062f\u0631 \u0628\u0631\u0631\u0633\u06cc \u0647\u0641\u062a\u06af\u06cc \u060c \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0647\u0627\u06cc\u06cc \u06a9\u0647 \u062f\u0631 \u067e\u0644\u062a\u0641\u0631\u0645 ZDI \u0645\u0646\u062a\u0634\u0631 \u0645\u06cc\u0634\u0646\u060c \u0628\u0632\u0648\u062f\u06cc \u0645\u0634\u0627\u0647\u062f\u0647 \u0645\u06cc\u06a9\u0646\u06cc\u0645. \u0642\u0628\u0644 \u0645\u0633\u0627\u0628\u0642\u0627\u062a \u0647\u0645 \u0627\u063a\u0644\u0628 \u0633\u0627\u0632\u0646\u062f\u0647 \u0647\u0627\u06cc \u0627\u0635\u0644\u0627\u062d\u06cc\u0647 \u0647\u0627\u06cc\u06cc \u0631\u0648 \u0628\u0631\u0627\u06cc \u0645\u062d\u0635\u0648\u0644\u0627\u062a\u0634\u0648\u0646 \u0627\u0631\u0627\u0626\u0647 \u062f\u0627\u062f\u0647 \u0628\u0648\u062f\u0646 \u0648 \u0627\u06cc\u0646 \u0645\u0633\u0627\u0628\u0642\u0627\u062a \u0628\u0627 \u0622\u062e\u0631\u06cc\u0646 \u0628\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc\u0647\u0627 \u0628\u0631\u06af\u0632\u0627\u0631 \u0634\u062f.<\/p>\n<p>\u062f\u0631 \u0627\u06cc\u0646 \u0645\u0633\u0627\u0628\u0642\u0647 32 \u0634\u0631\u06a9\u062a \u06a9\u0646\u0646\u062f\u0647 \u062d\u0636\u0648\u0631 \u062f\u0627\u0634\u062a\u0646 :<\/p>\n<p>Peter Geissler<br \/>\nBinary Factory<br \/>\nPentest Limited<br \/>\nTeam Viettel<br \/>\nNguyen Quoc Viet<br \/>\nSynacktiv<br \/>\nTeam Orca of Sea Security<br \/>\nTeam ECQ<br \/>\nCompass Security<br \/>\nBen<br \/>\nTeam PHPHooligans<br \/>\nSTAR Labs SG<br \/>\nInterrupt Labs<br \/>\nNCC Group<br \/>\nThales<br \/>\nR-sec<br \/>\nDEVCORE Intern<br \/>\nToChim<br \/>\nClaroty<br \/>\nSTEALIEN<br \/>\nRafal Goryl<br \/>\nANHTUD<br \/>\nSina Kheirkhah<br \/>\nChris Anastasio<br \/>\nBugscale<br \/>\nEason Liu<br \/>\nSAFA ex Teamt5<br \/>\nVNG Security Response Center<br \/>\nSonar<br \/>\nSEFCOM T0<br \/>\nNettitude<br \/>\nFoundry Zero<\/p>\n<p>\u0647\u0645\u0648\u0646\u0637\u0648\u0631 \u06a9\u0647 \u062f\u0631 \u0644\u06cc\u0633\u062a \u0634\u0631\u06a9\u062a \u06a9\u0646\u0646\u062f\u06af\u0627\u0646 \u0645\u0634\u0627\u0647\u062f\u0647 \u0645\u06cc\u06a9\u0646\u06cc\u062f\u060c \u0622\u0642\u0627\u06cc \u0633\u06cc\u0646\u0627 \u062e\u06cc\u0631\u062e\u0648\u0627\u0647 \u0647\u0645 \u0634\u0631\u06a9\u062a \u06a9\u0631\u062f\u0647 \u0628\u0648\u062f\u0646 \u06a9\u0647 \u062a\u0648\u0646\u0633\u062a\u0646 \u062f\u0631 \u0645\u062c\u0645\u0648\u0639 35 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 7 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0628\u062f\u0633\u062a \u0628\u06cc\u0627\u0631\u0646. \u0627\u06cc\u0634\u0648\u0646 \u062f\u0631 \u0633\u0647 \u0628\u0631\u0646\u0627\u0645\u0647 \u0627\u06cc \u06a9\u0647 \u062f\u0627\u0634\u062a\u0646 \u060c \u062a\u0648\u0646\u0633\u062a\u0646 \u0633\u0647 \u0645\u062d\u0635\u0648\u0644 TP-Link Omada Gigabit Router \u0648 Lexmark CX331adwe \u0648 Synology BC500 \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0646.<\/p>\n<p>\u0646\u0645\u0648\u062f\u0627\u0631 \u0632\u06cc\u0631 \u0646\u0634\u0648\u0646 \u062f\u0647\u0646\u062f\u0647 \u060c \u062a\u0639\u062f\u0627\u062f \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u0645\u0648\u0641\u0642 \u0647\u0631 \u0634\u0631\u06a9\u062a \u06a9\u0646\u0646\u062f\u0647 \u0647\u0633\u062a\u0634 :<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4943\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-1.webp\" sizes=\"auto, (max-width: 1278px) 100vw, 1278px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-1.webp 1278w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-34.webp 300w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-35.webp 1024w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-36.webp 768w\" alt=\"\u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u0645\u0648\u0641\u0642 \u0639\u0631 \u0634\u0631\u06a9\u062a \u06a9\u0646\u0646\u062f\u0647\" width=\"1278\" height=\"518\" data-dominant-color=\"d9dee2\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>\u0644\u06cc\u0633\u062a 12 \u0645\u062d\u0635\u0648\u0644\u06cc \u06a9\u0647 \u062f\u0631 \u0627\u06cc\u0646 \u0645\u0633\u0627\u0628\u0642\u0647 \u0628\u0647 \u062f\u0633\u062a \u0647\u06a9\u0631\u0647\u0627 \u060c \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u0634\u062f\u0646 \u0648 \u0627\u0644\u0627\u0646 \u0645\u06cc\u0634\u0647 \u06af\u0641\u062a \u06a9\u0647 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0647\u0633\u062a\u0646 :<\/p>\n<p>Canon imageCLASS MF753Cdw<br \/>\nSynology BC500<br \/>\nMy Cloud Pro Series PR4100<br \/>\nXiaomi 13 Pro<br \/>\nSonos Era 100<br \/>\nQNAP TS-464<br \/>\nSamsung Galaxy S23<br \/>\nLexmark CX331adwe<br \/>\nTP-Link Omada Gigabit Router<br \/>\nWyze Cam v3<br \/>\nHP Color LaserJet Pro MFP 4301fdw<br \/>\nSynology RT6600ax<\/p>\n<p>\u0646\u0645\u0648\u062f\u0627\u0631 \u0632\u06cc\u0631 \u062a\u0639\u062f\u0627\u062f \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u0634\u062f\u0646 \u0647\u0631 \u0645\u062d\u0635\u0648\u0644 \u0631\u0648 \u0646\u0634\u0648\u0646 \u0645\u06cc\u062f\u0647 :<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4941\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-2.webp\" sizes=\"auto, (max-width: 1094px) 100vw, 1094px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-2.webp 1094w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-37.webp 300w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-38.webp 1024w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-39.webp 768w\" alt=\"\u062a\u0639\u062f\u0627\u062f \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a\u0647\u0627\u06cc pwn2own-toronto-2023\" width=\"1094\" height=\"503\" data-dominant-color=\"4e5d6c\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>\u062f\u0631 \u0645\u062c\u0645\u0648\u0639 57 \u0628\u0631\u0646\u0627\u0645\u0647 \u0627\u0631\u0627\u0626\u0647 \u0634\u062f\u0647 \u06a9\u0647 \u0646\u062a\u06cc\u062c\u0647 29 \u0645\u0648\u0631\u062f\u0634 \u0645\u0648\u0641\u0642\u06cc\u062a \u0622\u0645\u06cc\u0632\u060c 15 \u0645\u0648\u0631\u062f\u0634 \u0645\u0648\u0641\u0642 \u0627\u0645\u0627 \u0628\u0627\u06af\u0647\u0627 \u0642\u0628\u0644\u0627 \u0634\u0646\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 \u0628\u0648\u062f\u0646\u060c 7 \u0645\u0648\u0631\u062f\u0634 \u0634\u06a9\u0633\u062a \u062e\u0648\u0631\u062f\u0647 \u0648 \u062f\u0631 6 \u0645\u0648\u0631\u062f \u0647\u0645 \u0634\u0631\u06a9\u062a \u06a9\u0646\u0646\u062f\u0647 \u0627\u0646\u0635\u0631\u0627\u0641 \u062f\u0627\u062f\u0647 :<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4942\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-3.webp\" sizes=\"auto, (max-width: 864px) 100vw, 864px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-3.webp 864w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-40.webp 300w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-41.webp 768w\" alt=\"\u0646\u062a\u0627\u06cc\u062c \u0645\u0633\u0627\u0628\u0642\u0647\" width=\"864\" height=\"508\" data-dominant-color=\"babab6\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>\u062f\u0631 \u0628\u0631\u062e\u06cc \u0628\u0631\u0646\u0627\u0645\u0647 \u0647\u0627 \u0647\u06a9\u0631\u0647\u0627 \u062f\u0648 \u0645\u062d\u0635\u0648\u0644 \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0631\u062f\u0646 \u06a9\u0647 \u0628\u0647\u0634\u0648\u0646 SOHO Smashup \u0645\u06cc\u06af\u0646.<\/p>\n<p><strong>\u0631\u0648\u0632 \u0627\u0648\u0644 \u0645\u0633\u0627\u0628\u0642\u0647 :<\/strong><\/p>\n<p>\u0631\u0648\u0632 \u0627\u0648\u0644 \u0645\u0633\u0627\u0628\u0642\u0647 \u060c \u0628\u0627 Peter Geissler \u0634\u0631\u0648\u0639 \u0634\u062f\u060c \u0627\u06cc\u0634\u0648\u0646 \u0642\u0631\u0627\u0631 \u0628\u0648\u062f \u06a9\u0647 Canon imageCLASS MF753Cdw \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647\u060c \u0627\u0645\u0627 \u0646\u062a\u0648\u0646\u0633\u062a \u0627\u06cc\u0646 \u06a9\u0627\u0631 \u062f\u0631 \u0641\u0631\u0635\u062a \u06a9\u0647 \u062f\u0627\u062f\u0647 \u0628\u0648\u062f\u0646\u060c \u062a\u0645\u0648\u0645 \u06a9\u0646\u0647 \u0648 \u062f\u0631 \u0646\u062a\u06cc\u062c\u0647 FAILURE \u0634\u062f.<\/p>\n<p>Binary Factory \u062a\u0648\u0646\u0633\u062a \u0628\u0627 stack buffer overflow \u060c \u0645\u062d\u0635\u0648\u0644 Synology BC500 \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u0648 30 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 3 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u06a9\u0633\u0628 \u06a9\u0631\u062f.<\/p>\n<p>Pentest Limited \u0628\u0627 \u0632\u0646\u062c\u06cc\u0631\u0647 \u06a9\u0631\u062f\u0646 \u062f\u0648 \u0628\u0627\u06af DoS \u0648 SSRF \u060c \u062a\u0648\u0646\u0633\u062a\u0646 My Cloud Pro Series PR4100 \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647. 40 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 4 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u06a9\u0633\u0628 \u06a9\u0631\u062f\u0646.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4888\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-4.webp\" sizes=\"auto, (max-width: 945px) 100vw, 945px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-4.webp 945w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-42.webp 300w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-43.webp 768w\" alt=\"Pentest Limited\" width=\"945\" height=\"710\" data-dominant-color=\"7b1944\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>Team Viettel \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u06cc\u0647 \u0628\u0627\u06af\u060c Xiaomi 13 Pro \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u0648 40 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 4 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u06a9\u0633\u0628 \u06a9\u0631\u062f.<\/p>\n<p>Nguyen Quoc Viet \u062a\u0648\u0646\u0633\u062a\u0647 \u0628\u0627 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc buffer overflow \u0645\u062d\u0635\u0648\u0644 Canon imageCLASS MF753Cdw \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647. 20 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 2 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u06a9\u0633\u0628 \u06a9\u0631\u062f.<\/p>\n<p>Synacktiv\u060c \u0628\u0627 \u0632\u0646\u062c\u06cc\u0631\u0647 \u06a9\u0631\u062f\u0646 \u0633\u0647 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0631\u0648\u06cc Synology BC500 \u060c \u062a\u0648\u0646\u0633\u062a \u0627\u06cc\u0646 \u0645\u062d\u0635\u0648\u0644 \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc \u06a9\u0646\u0647 \u0648 15 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 3 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u06a9\u0633\u0628 \u06a9\u0631\u062f.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4889\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-5.webp\" sizes=\"auto, (max-width: 945px) 100vw, 945px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-5.webp 945w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-44.webp 300w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-45.webp 768w\" alt=\"Synacktiv\" width=\"945\" height=\"710\" data-dominant-color=\"5b3c49\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>Team Orca of Sea Security \u0628\u0627 \u0632\u0646\u062c\u06cc\u0631\u0647 \u06a9\u0631\u062f\u0646 \u062f\u0648 \u0628\u0627\u06af OOB Read \u0648 UAF \u062a\u0648\u0646\u0633\u062a\u0646 Sonos Era 100 \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u0648 60 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 6 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u062f\u0631\u06cc\u0627\u0641\u062a \u06a9\u0631\u062f.<\/p>\n<p>Team ECQ \u0628\u0627 \u0632\u0646\u062c\u06cc\u0631\u0647 \u06a9\u0631\u062f\u0646 \u0633\u0647 \u0628\u0627\u06af \u06a9\u0647 \u06cc\u06a9\u06cc\u0634 SSRF\u00a0 \u0648 \u062f\u0648\u062a\u0627\u0634 injection \u0628\u0648\u062f\u060c \u062a\u0648\u0646\u0633\u062a\u0646 QNAP TS-464 \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647. 40 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 4 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u06a9\u0633\u0628 \u06a9\u0631\u062f.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4890\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-6.webp\" sizes=\"auto, (max-width: 750px) 100vw, 750px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-6.webp 750w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-46.webp 300w\" alt=\"Team ECQ\" width=\"750\" height=\"563\" data-dominant-color=\"7d2842\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>Compass Security \u062a\u0648\u0646\u0633\u062a \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc stack overflow \u060c \u0645\u062d\u0635\u0648\u0644 Synology BC500 \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647\u060c \u0627\u0645\u0627 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a\u06cc \u06a9\u0647 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0631\u062f\u0646 \u0642\u0628\u0644\u0627 \u0634\u0646\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 \u0628\u0648\u062f \u0648 \u062f\u0631 \u0646\u062a\u06cc\u062c\u0647 3,750 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 0.75 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u06a9\u0633\u0628 \u06a9\u0631\u062f\u0646.<\/p>\n<p>Ben \u062a\u0648\u0646\u0633\u062a \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc stack overflow \u060c \u0645\u062d\u0635\u0648\u0644 Canon imageCLASS MF753Cdw \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u0648 10 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 2 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u06a9\u0633\u0628 \u06a9\u0631\u062f.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4891\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-7.webp\" sizes=\"auto, (max-width: 750px) 100vw, 750px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-7.webp 750w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-47.webp 300w\" alt=\"Ben\" width=\"750\" height=\"563\" data-dominant-color=\"817a70\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>Pentest Limited \u062a\u0648\u0646\u0633\u062a \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc Improper Input Validation \u060c \u0633\u0627\u0645\u0633\u0648\u0646\u06af Galaxy S23 \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647. 50 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 5 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0628\u062f\u0633\u062a \u0622\u0648\u0631\u062f.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4892\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-8.webp\" sizes=\"auto, (max-width: 750px) 100vw, 750px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-8.webp 750w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-48.webp 234w\" alt=\"Pentest Limited\" width=\"750\" height=\"960\" data-dominant-color=\"795c5a\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>Team Viettel \u0628\u0627 \u0632\u0646\u062c\u06cc\u0631\u0647 \u06a9\u0631\u062f\u0646 \u062f\u0648 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u062a\u0648\u0646\u0633\u062a QNAP TS-464 \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u0648 20 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 4 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u06a9\u0633\u0628 \u06a9\u0631\u062f.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4893\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-9.webp\" sizes=\"auto, (max-width: 900px) 100vw, 900px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-9.webp 900w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-49.webp 300w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-50.webp 768w\" alt=\"Team Viettel\" width=\"900\" height=\"624\" data-dominant-color=\"823c51\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>Team PHPHooligans \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc memory corruption \u062a\u0648\u0646\u0633\u062a\u0646 \u0631\u0648\u06cc Lexmark CX331adwe \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f \u0627\u0632 \u0631\u0627\u0647 \u062f\u0648\u0631 \u0627\u062c\u0631\u0627 \u06a9\u0646\u0647 \u0648 20 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 2 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u06a9\u0633\u0628 \u06a9\u0631\u062f.<\/p>\n<p>STAR Labs SG \u0628\u0627 \u0632\u0646\u062c\u06cc\u0631\u0647 \u06a9\u0631\u062f\u0646 \u062f\u0648 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc directory traversal \u0648 command injection \u060c \u062a\u0648\u0646\u0633\u062a QNAP TS-464 \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u0648 20 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 4 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u062f\u0631\u06cc\u0627\u0641\u062a \u06a9\u0631\u062f.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4894\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-10.webp\" sizes=\"auto, (max-width: 717px) 100vw, 717px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-10.webp 717w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-51.webp 300w\" alt=\"STAR Labs SG\" width=\"717\" height=\"538\" data-dominant-color=\"7c3053\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>Interrupt Labs \u0646\u062a\u0648\u0646\u0633\u062a \u062f\u0631 \u0632\u0645\u0627\u0646\u06cc \u06a9\u0647 \u0628\u0647\u0634 \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0627\u062f\u0647 \u0628\u0648\u062f\u0646\u060c Lexmark CX331adwe \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u0648 \u062f\u0631 \u0646\u062a\u06cc\u062c\u0647 FAILURE \u0634\u062f\u0646.<\/p>\n<p>NCC Group \u062a\u0648\u0646\u0633\u062a\u0646 Xiaomi 13 Pro \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u0648 20 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 4 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u06a9\u0633\u0628 \u06a9\u0631\u062f.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4895\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-11.webp\" sizes=\"auto, (max-width: 750px) 100vw, 750px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-11.webp 750w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-52.webp 300w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-53.webp 150w\" alt=\"NCC Group\" width=\"750\" height=\"750\" data-dominant-color=\"5c5c64\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>Team Viettel \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc stack buffer overflow \u062a\u0648\u0646\u0633\u062a Canon imageCLASS MF753Cdw \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u0648 10 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 2 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0628\u062f\u0633\u062a \u0622\u0648\u0631\u062f.<\/p>\n<p>STAR Labs SG \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc permissive list of allowed inputs \u062a\u0648\u0646\u0633\u062a Samsung Galaxy S23 \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u0648 25 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 5 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u06a9\u0633\u0628 \u06a9\u0631\u062f.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4896\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-12.webp\" sizes=\"auto, (max-width: 624px) 100vw, 624px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-12.webp 624w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-54.webp 173w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-55.webp 589w\" alt=\"STAR Labs SG\" width=\"624\" height=\"1085\" data-dominant-color=\"8a888c\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>Thales \u062a\u0648\u0646\u0633\u062a\u0647 QNAP TS-464 \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u060c \u0627\u0645\u0627 \u0686\u0648\u0646 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a\u0634\u0648\u0646 \u0642\u0628\u0644\u0627 \u0634\u0646\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 \u0628\u0648\u062f\u060c 12,500 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 2.5 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u06a9\u0633\u0628 \u06a9\u0631\u062f.<\/p>\n<p>R-sec \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc stack buffer overflow \u062a\u0648\u0646\u0633\u062a Canon imageCLASS MF753Cdw \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u060c \u0627\u0645\u0627 \u0686\u0648\u0646 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a\u0634\u0648\u0646 \u0642\u0628\u0644\u0627 \u0634\u0646\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 \u0628\u0648\u062f\u060c 2,500 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 0.5 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0628\u062f\u0633\u062a \u0622\u0648\u0631\u062f\u0646.<\/p>\n<h2>\u0631\u0648\u0632 \u062f\u0648\u0645 \u0645\u0633\u0627\u0628\u0642\u0647 :<\/h2>\n<p>Team Viettel \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc OOB \u062a\u0648\u0646\u0633\u062a Sonos Era 100 \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u0648 30 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 6 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0628\u062f\u0633\u062a \u0622\u0648\u0631\u062f.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4913\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-13.webp\" sizes=\"auto, (max-width: 750px) 100vw, 750px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-13.webp 750w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-56.webp 300w\" alt=\"Team Viettel\" width=\"750\" height=\"286\" data-dominant-color=\"303d26\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>Chris Anastasio \u062a\u0648\u0646\u0633\u062a \u0628\u0627 \u0645\u0648\u0641\u0642\u06cc\u062a TP-Link Omada Gigabit Router \u0648 Lexmark CX331adwe \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u0648 100 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 10 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0628\u062f\u0633\u062a \u0622\u0648\u0631\u062f.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4914\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-14.webp\" sizes=\"auto, (max-width: 702px) 100vw, 702px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-14.webp 702w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-57.webp 300w\" alt=\"Chris Anastasio\" width=\"702\" height=\"374\" data-dominant-color=\"624b58\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>Bugscale \u062a\u0648\u0646\u0633\u062a \u0628\u0627 \u0645\u0648\u0641\u0642\u06cc\u062a \u06cc\u0647 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc stack buffer overflow \u0631\u0648 \u0631\u0648\u06cc Synology BC500 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u060c \u0627\u0645\u0627 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a\u06cc \u06a9\u0647 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0631\u062f\u0647 \u0634\u0646\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 \u0628\u0648\u062f\u060c 3,750 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 0.75 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0628\u062f\u0633\u062a \u0622\u0648\u0631\u062f.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4915\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-15.webp\" sizes=\"auto, (max-width: 750px) 100vw, 750px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-15.webp 750w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-58.webp 300w\" alt=\"Bugscale \" width=\"750\" height=\"563\" data-dominant-color=\"89094d\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>DEVCORE Intern \u062a\u0648\u0646\u0633\u062a \u0628\u0627 \u0645\u0648\u0641\u0642\u06cc\u062a \u06cc\u0647 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a stack overflow \u0631\u0648\u06cc TP-Link Omada Gigabit Router \u0648 \u062f\u0648 \u062a\u0627 \u0628\u0627\u06af \u0631\u0648\u06cc QNAP TS-464 \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u0648 50 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 10 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0631\u0648 \u06a9\u0633\u0628 \u06a9\u0631\u062f.<\/p>\n<p>Team Viettel \u062a\u0648\u0646\u0633\u062a \u0628\u0627 \u0645\u0648\u0641\u0642\u06cc\u062a \u06cc\u0647 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a stack overflow \u0631\u0648\u06cc HP Color LaserJet Pro MFP 4301fdw \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u0648 20 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 2 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u06a9\u0633\u0628 \u06a9\u0631\u062f.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"has-transparency aligncenter size-full wp-image-4916\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023.png\" sizes=\"auto, (max-width: 750px) 100vw, 750px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023.png 750w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-1.png 300w\" alt=\"Team Viettel \" width=\"750\" height=\"389\" data-dominant-color=\"32142a\" data-has-transparency=\"true\" title=\"\"><\/p>\n<p>Peter Geissler \u0627\u0632 \u0647\u06a9 Wyze Cam v3 \u0648 QNAP TS-464 \u060c \u0647\u0645\u0686\u0646\u06cc\u0646 Eason Liu \u0627\u0632 \u0647\u06a9 Xiaomi 13 Pro \u060c \u0648 Chris Anastasio \u0627\u0632 \u0647\u06a9 Lexmark CX331adwe \u0627\u0646\u0635\u0631\u0627\u0641 \u062f\u0627\u062f\u0646.<\/p>\n<p>Interrupt Labs \u062a\u0648\u0646\u0633\u062a \u0628\u0627 \u0645\u0648\u0641\u0642\u06cc\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc stack buffer overflow \u0631\u0648 \u0631\u0648\u06cc Canon imageCLASS MF753Cdw \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647\u060c \u0627\u0645\u0627 \u0686\u0648\u0646 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a\u0634\u0648\u0646 \u0634\u0646\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 \u0628\u0648\u062f\u060c 2,500 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 0.5 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u06a9\u0633\u0628 \u06a9\u0631\u062f\u0646.<\/p>\n<p>SAFA ex Teamt5 \u062a\u0648\u0646\u0633\u062a \u0628\u0627 \u0645\u0648\u0641\u0642\u06cc\u062a \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc stack buffer overflow \u0631\u0648 \u0631\u0648\u06cc Synology BC500 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u060c \u0627\u0645\u0627 \u0686\u0648\u0646 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a\u0634\u0648\u0646 \u0634\u0646\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 \u0628\u0648\u062f\u060c 3,750 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 0.75 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u06a9\u0633\u0628 \u06a9\u0631\u062f\u0646.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4917\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-16.webp\" sizes=\"auto, (max-width: 750px) 100vw, 750px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-16.webp 750w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-59.webp 300w\" alt=\"BUG COLLISION\" width=\"750\" height=\"563\" data-dominant-color=\"753554\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>Team Orca of Sea Security \u062a\u0648\u0646\u0633\u062a \u0628\u0627 \u06cc\u0647 \u0628\u0627\u06af Synology RT6600ax \u0648 \u0628\u0627 \u0633\u0647 \u0628\u0627\u06af QNAP TS-464 \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u0648 50 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 50 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u06a9\u0633\u0628 \u06a9\u0631\u062f.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4919\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-17.webp\" sizes=\"auto, (max-width: 750px) 100vw, 750px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-17.webp 750w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-60.webp 300w\" alt=\"Team Orca of Sea Security\" width=\"750\" height=\"563\" data-dominant-color=\"681f45\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>VNG Security Response Center \u062a\u0648\u0646\u0633\u062a \u0628\u0627 \u0645\u0648\u0641\u0642\u06cc\u062a \u062f\u0648 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0631\u0648 \u062f\u0631 QNAP TS-464 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u060c \u0627\u0645\u0627 \u0686\u0648\u0646 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a\u0634\u0648\u0646 \u0634\u0646\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 \u0628\u0648\u062f\u060c 5,000 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 1 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0628\u062f\u0633\u062a \u0622\u0648\u0631\u062f\u0646.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4920\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-18.webp\" sizes=\"auto, (max-width: 615px) 100vw, 615px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-18.webp 615w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-61.webp 300w\" alt=\"VNG Security Response Center\" width=\"615\" height=\"461\" data-dominant-color=\"641837\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>Sina Kheirkhah \u062a\u0648\u0646\u0633\u062a \u06cc\u0647 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc RCE \u0631\u0648 \u0631\u0648\u06cc Synology BC500 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647\u060c \u0627\u0645\u0627 \u0686\u0648\u0646 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a\u06cc \u06a9\u0647 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0631\u062f\u0647 \u0628\u0648\u062f \u0642\u0628\u0644\u0627 \u0634\u0646\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 \u0628\u0648\u062f\u060c 3,750 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 0.75 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0628\u062f\u0633\u062a \u0622\u0648\u0631\u062f.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4921\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-19.webp\" sizes=\"auto, (max-width: 1500px) 100vw, 1500px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-19.webp 1500w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-62.webp 300w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-63.webp 1024w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-64.webp 768w\" alt=\"Sina Kheirkhah\" width=\"1500\" height=\"1125\" data-dominant-color=\"715d84\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>Sonar \u062a\u0648\u0646\u0633\u062a \u0628\u0627 \u0645\u0648\u0641\u0642\u06cc\u062a \u06cc\u0647 command injection \u0631\u0648 \u0631\u0648\u06cc Wyze Cam v3 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u0648 30 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 3 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0628\u062f\u0633\u062a \u0622\u0648\u0631\u062f.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4922\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-20.webp\" sizes=\"auto, (max-width: 656px) 100vw, 656px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-20.webp 656w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-65.webp 300w\" alt=\"sonar\" width=\"656\" height=\"348\" data-dominant-color=\"6c264d\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>SEFCOM T0 \u062a\u0648\u0646\u0633\u062a \u0628\u0627 \u0645\u0648\u0641\u0642\u06cc\u062a \u06cc\u0647 command injection \u0631\u0648 \u0631\u0648\u06cc Wyze Cam v3 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u060c \u0627\u0645\u0627 \u0686\u0648\u0646 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a\u0634\u0648\u0646 \u0642\u0628\u0644\u0627 \u0634\u0646\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 \u0628\u0648\u062f \u060c 3,750 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 0.75 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0628\u062f\u0633\u062a \u0622\u0648\u0631\u062f.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4923\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-21.webp\" sizes=\"auto, (max-width: 750px) 100vw, 750px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-21.webp 750w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-66.webp 300w\" alt=\"SEFCOM T0\" width=\"750\" height=\"563\" data-dominant-color=\"544652\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>Interrupt Labs \u062a\u0648\u0646\u0633\u062a \u0628\u0627 \u0645\u0648\u0641\u0642\u06cc\u062a \u06cc\u0647 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc improper input validation \u0631\u0648 \u0631\u0648\u06cc Samsung Galaxy S23 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u0648 25 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 5 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0628\u062f\u0633\u062a \u0622\u0648\u0631\u062f\u0646.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4924\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-22.webp\" sizes=\"auto, (max-width: 594px) 100vw, 594px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-22.webp 594w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-67.webp 165w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-68.webp 562w\" alt=\"Interrupt Labs\" width=\"594\" height=\"1082\" data-dominant-color=\"89868e\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>Nettitude \u0646\u062a\u0648\u0646\u0633\u062a \u062f\u0631 \u0632\u0645\u0627\u0646\u06cc \u06a9\u0647 \u062f\u0627\u0634\u062a\u060c Canon imageCLASS MF753Cdw \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647.<\/p>\n<p>ToChim \u062a\u0648\u0646\u0633\u062a \u0628\u0627 \u0645\u0648\u0641\u0642\u06cc\u062a \u06cc\u0647 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc permissive list of allowed inputs \u0631\u0648 \u0631\u0648\u06cc Samsung Galaxy S23 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u0648 25 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 5 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u06a9\u0633\u0628 \u06a9\u0631\u062f.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4925\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-23.webp\" sizes=\"auto, (max-width: 461px) 100vw, 461px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-23.webp 461w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-69.webp 225w\" alt=\"ToChim \" width=\"461\" height=\"615\" data-dominant-color=\"867e88\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>ANHTUD \u062a\u0648\u0646\u0633\u062a \u06cc\u0647 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc stack buffer overflow \u0631\u0648 \u0631\u0648\u06cc Canon imageCLASS MF753Cdw \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u0648 10\u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 2 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u06a9\u0633\u0628 \u06a9\u0631\u062f.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4926\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-24.webp\" sizes=\"auto, (max-width: 600px) 100vw, 600px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-24.webp 600w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-70.webp 300w\" alt=\"ANHTUD \" width=\"600\" height=\"450\" data-dominant-color=\"7d605f\" data-has-transparency=\"false\" title=\"\"><\/p>\n<h2>\u0631\u0648\u0632 \u0633\u0648\u0645 \u0645\u0633\u0627\u0628\u0642\u0627\u062a :<\/h2>\n<p>DEVCORE \u0646\u062a\u0648\u0646\u0633\u062a \u062f\u0631 \u0641\u0631\u0635\u062a\u06cc \u06a9\u0647 \u062f\u0627\u0634\u062a\u0647 \u060c Canon imageCLASS MF753Cdw \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647.<\/p>\n<p>Interrupt Labs \u062a\u0648\u0646\u0633\u062a \u0628\u0627 \u0645\u0648\u0641\u0642\u06cc\u062a \u06cc\u0647 RCE \u0631\u0648\u06cc Synology BC500 \u0627\u0646\u062c\u0627\u0645 \u0628\u062f\u0647\u060c \u0627\u0645\u0627 \u0686\u0648\u0646 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a\u0634\u0648\u0646 \u0642\u0628\u0644\u0627 \u0634\u0646\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 \u0628\u0648\u062f\u060c 3,750 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 0.75 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0631\u0648 \u06a9\u0633\u0628 \u06a9\u0631\u062f.<\/p>\n<p>Team Orca of Sea Security \u0646\u062a\u0648\u0646\u0633\u062a \u062f\u0631 \u0632\u0645\u0627\u0646\u06cc \u06a9\u0647 \u062f\u0627\u0634\u062a\u0647\u060c Xiamoi 13 Pro \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647.<\/p>\n<p>ToChim \u0627\u0632 \u0647\u06a9 Xiaomi 13 Pro \u0648 ANHTUD\u00a0 \u0647\u0645 \u0627\u0632 \u0647\u06a9 Xiaomi 13 Pro \u0627\u0646\u0635\u0631\u0627\u0641 \u062f\u0627\u062f.<\/p>\n<p>Claroty \u062a\u0648\u0646\u0633\u062a \u0628\u0627 \u0645\u0648\u0641\u0642\u06cc\u062a 4 \u0628\u0627\u06af \u0631\u0648 \u0631\u0648\u06cc TP-Link Omada Gigabit Router \u0648 Synology BC500 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u0627\u0645\u0627 \u0686\u0648\u0646 \u0628\u0627\u06af\u0647\u0627\u06cc\u06cc \u06a9\u0647 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0631\u062f\u0646 \u0642\u0628\u0644\u0627 \u0634\u0646\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 \u0628\u0648\u062f\u060c 40,750 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 8.25 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0628\u062f\u0633\u062a \u0622\u0648\u0631\u062f\u0646.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4931\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-25.webp\" sizes=\"auto, (max-width: 750px) 100vw, 750px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-25.webp 750w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-71.webp 300w\" alt=\"Claroty \" width=\"750\" height=\"500\" data-dominant-color=\"5d454c\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>STEALIEN \u062a\u0648\u0646\u0633\u062a \u0628\u0627 \u0645\u0648\u0641\u0642\u06cc\u062a \u06cc\u0647 stack buffer overflow \u0631\u0648 \u0631\u0648\u06cc Wyze Cam v3 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u06a9\u0647 \u0645\u0646\u062c\u0631 \u0628\u0647 root shell \u0634\u062f\u0647. 15 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 3 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0628\u062f\u0633\u062a \u0622\u0648\u0631\u062f\u0647.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4932\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-26.webp\" sizes=\"auto, (max-width: 717px) 100vw, 717px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-26.webp 717w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-72.webp 300w\" alt=\"STEALIEN \" width=\"717\" height=\"538\" data-dominant-color=\"6a4a5e\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>Rafal Goryl \u0632\u0646\u062c\u06cc\u0631\u0647 \u06a9\u0631\u062f\u0646 2 \u0628\u0627\u06af\u060c \u062a\u0648\u0646\u0633\u062a\u0647 Wyze Cam v3 \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u06a9\u0647 \u0645\u0646\u062c\u0631 \u0628\u0647 root shell \u0634\u062f\u0647. 15 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 3 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0628\u062f\u0633\u062a \u0622\u0648\u0631\u062f\u0647.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4933\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-27.webp\" sizes=\"auto, (max-width: 750px) 100vw, 750px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-27.webp 750w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-73.webp 300w\" alt=\"Rafal Goryl\" width=\"750\" height=\"634\" data-dominant-color=\"32343f\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>Team Orca of Sea Security \u062a\u0648\u0646\u0633\u062a \u0628\u0627 \u0645\u0648\u0641\u0642\u06cc\u062a Samsung Galaxy S23 \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647\u060c \u0627\u0645\u0627 \u0686\u0648\u0646 \u0628\u0627\u06af\u06cc \u06a9\u0647 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0631\u062f\u0646 \u0642\u0628\u0644\u0627 \u0634\u0646\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 \u0628\u0648\u062f\u060c 6,250 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 1.25 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0628\u062f\u0633\u062a \u0622\u0648\u0631\u062f\u0647.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4934\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-28.webp\" sizes=\"auto, (max-width: 396px) 100vw, 396px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-28.webp 396w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-74.webp 158w\" alt=\"Team Orca of Sea Security\" width=\"396\" height=\"754\" data-dominant-color=\"bbb9b5\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>Team Viettel \u062a\u0648\u0646\u0633\u062a \u0628\u0627 \u0645\u0648\u0641\u0642\u06cc\u062a \u06cc\u0647 stack buffer overflow \u0631\u0648 \u0631\u0648\u06cc Lexmark CX331adwe \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u06a9\u0647 \u0645\u0646\u062c\u0631 \u0628\u0647 RCE \u0634\u062f\u0647. 10 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 2 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0628\u062f\u0633\u062a \u0622\u0648\u0631\u062f\u0647.<\/p>\n<p>Interrupt Labs \u062f\u0631 \u0632\u0645\u0627\u0646\u06cc \u06a9\u0647 \u062f\u0627\u0634\u062a\u060c \u0646\u062a\u0648\u0646\u0633\u062a Xiaomi 13 Pro \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647.<\/p>\n<p>Synacktiv \u062a\u0648\u0646\u0633\u062a \u06cc\u0647 heap buffer overflow \u0631\u0648 \u062f\u0631 \u06a9\u0631\u0646\u0644 \u0627\u0632 \u0637\u0631\u06cc\u0642 WiFi \u0631\u0648\u06cc Wyze Cam v3 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647 \u06a9\u0647 \u0645\u0646\u062c\u0631 \u0628\u0647 RCE \u0645\u06cc\u0634\u0647. 15 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 3 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u06a9\u0633\u0628 \u06a9\u0631\u062f\u0647.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4935\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-29.webp\" sizes=\"auto, (max-width: 600px) 100vw, 600px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-29.webp 600w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-75.webp 300w\" alt=\"Synacktiv\" width=\"600\" height=\"400\" data-dominant-color=\"4f3643\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>Sina Kheirkhah \u062a\u0648\u0646\u0633\u062a \u0628\u0627 \u0645\u0648\u0641\u0642\u06cc\u062a \u06cc\u0647 stack buffer overflow \u0648 \u06cc\u0647 missing authentication for critical function \u0631\u0648 \u0631\u0648\u06cc TP-Link Omada Gigabit Router \u0648 Lexmark CX331adwe \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647\u060c \u0627\u0645\u0627 \u0686\u0648\u0646 \u0628\u0627\u06af\u0647\u0627\u06cc\u06cc \u06a9\u0647 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0631\u062f\u0647 \u0628\u0648\u062f\u060c \u0642\u0628\u0644\u0627 \u0634\u0646\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 \u0628\u0648\u062f\u060c 31,250 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 6.25 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0628\u062f\u0633\u062a \u0622\u0648\u0631\u062f.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4936\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-30.webp\" sizes=\"auto, (max-width: 750px) 100vw, 750px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-30.webp 750w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-76.webp 300w\" alt=\"Sina Kheirkhah\" width=\"750\" height=\"500\" data-dominant-color=\"3b2b3d\" data-has-transparency=\"false\" title=\"\"><\/p>\n<h2>\u0631\u0648\u0632 \u0686\u0647\u0627\u0631\u0645 \u0648 \u0646\u0647\u0627\u06cc\u06cc \u0645\u0633\u0627\u0628\u0642\u0627\u062a :<\/h2>\n<p>Foundry Zero \u0646\u062a\u0648\u0646\u0633\u062a \u062f\u0631 \u0632\u0645\u0627\u0646\u06cc \u06a9\u0647 \u0641\u0631\u0635\u062a \u062f\u0627\u0634\u062a\u060c Lexmark CX331adwe \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647.<\/p>\n<p>ANHTUD \u062a\u0648\u0646\u0633\u062a \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u062f\u0648 \u0628\u0627\u06af stack buffer overflows \u0628\u0627 \u0645\u0648\u0641\u0642\u06cc\u062a TP-Link Omada Gigabit Router \u0648 Canon imageCLASS MF753Cdw \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647\u060c \u0627\u0645\u0627 \u0686\u0648\u0646 \u0628\u0627\u06af\u0647\u0627\u06cc\u06cc \u06a9\u0647 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0631\u062f\u0646\u060c \u0642\u0628\u0644\u0627 \u0634\u0646\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 \u0628\u0648\u062f\u0646\u060c 31,250 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 6.25 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u06a9\u0633\u0628 \u06a9\u0631\u062f\u0646.<\/p>\n<p>Interrupt Labs \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0632\u0646\u062c\u06cc\u0631\u0647 \u06a9\u0631\u062f\u0646 \u062f\u0648 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc UAF \u0648 integer underflow \u0628\u0627 \u0645\u0648\u0641\u0642\u06cc\u062a Sonos Era 100 \u0631\u0648 \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647\u060c \u0627\u0645\u0627 \u0686\u0648\u0646 \u0628\u0627\u06af\u06cc \u06a9\u0647 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0631\u062f\u0647 \u0628\u0648\u062f\u0646\u060c \u0642\u0628\u0644\u0627 \u0634\u0646\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 \u0628\u0648\u062f\u060c 18,750 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 3.75 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0628\u062f\u0633\u062a \u0622\u0648\u0631\u062f\u0646.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4938\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-31.webp\" sizes=\"auto, (max-width: 750px) 100vw, 750px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-31.webp 750w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-77.webp 300w\" alt=\"Interrupt Labs\" width=\"750\" height=\"255\" data-dominant-color=\"676268\" data-has-transparency=\"false\" title=\"\"><\/p>\n<p>Team Viettel \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0647\u0627\u06cc heap buffer overflow \u0648 stack buffer overflow \u060c \u062a\u0648\u0646\u0633\u062a TP-Link Omada Gigabit Router \u0648 Canon imageCLASS MF753Cdw \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u06a9\u0646\u0647. 50 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 10 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0628\u062f\u0633\u062a \u0622\u0648\u0631\u062f\u0646.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"not-transparent aligncenter size-full wp-image-4939\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-32.webp\" sizes=\"auto, (max-width: 750px) 100vw, 750px\" srcset=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-32.webp 750w, https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2023\/10\/d986daafd8a7d987db8c-d8a8d987-d985d8b3d8a7d8a8d982d8a7d8aa-pwn2own-toronto-2023-78.webp 300w\" alt=\"Team Viettel\" width=\"750\" height=\"460\" data-dominant-color=\"2f1127\" data-has-transparency=\"false\" title=\"\"><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u0632\u0645\u0627\u0646 \u0645\u0637\u0627\u0644\u0639\u0647: 10 \u062f\u0642\u06cc\u0642\u0647 \u0645\u0633\u0627\u0628\u0642\u0627\u062a Pwn2Own Toronto 2023 \u0637\u06cc 4 \u0631\u0648\u0632\u060c 24 \u062a\u0627 27 \u0627\u06a9\u062a\u0628\u0631 \u060c \u0628\u0631\u06af\u0632\u0627\u0631 \u0634\u062f \u0648 \u062f\u0631 \u0646\u0647\u0627\u06cc\u062a Team Viettel \u0628\u0627 \u06a9\u0633\u0628 180 \u0647\u0632\u0627\u0631 \u062f\u0644\u0627\u0631 \u062c\u0627\u06cc\u0632\u0647 \u0646\u0642\u062f\u06cc \u0648 30 \u0627\u0645\u062a\u06cc\u0627\u0632 Master of Pwn \u0645\u0642\u0627\u0645 \u0627\u0648\u0644 \u0631\u0648 \u0628\u062f\u0633\u062a \u0622\u0648\u0631\u062f. \u0628\u0631\u0627\u06cc \u0622\u0634\u0646\u0627\u06cc\u06cc \u0628\u0627 \u0627\u06cc\u0646 \u0645\u0633\u0627\u0628\u0642\u0627\u062a\u060c \u0645\u06cc\u062a\u0648\u0646\u06cc\u062f \u0627\u06cc\u0646 \u0644\u06cc\u0646\u06a9 \u0645\u0634\u0627\u0647\u062f\u0647 \u06a9\u0646\u06cc\u062f. \u062f\u0631 \u0627\u06cc\u0646 \u0645\u0633\u0627\u0628\u0642\u0627\u062a\u060c \u062f\u0631 &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26,28,29,34],"tags":[],"class_list":["post-50676","post","type-post","status-publish","format-standard","hentry","category-vulnerability","category-28","category-29","category-server"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/50676","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=50676"}],"version-history":[{"count":2,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/50676\/revisions"}],"predecessor-version":[{"id":50769,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/50676\/revisions\/50769"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=50676"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=50676"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=50676"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}