Interrupt-oriented bugdoor programming: a minimalist approach to bugdooring embedded systems firmware

@inproceedings{Tan2014InterruptorientedBP,
  title={Interrupt-oriented bugdoor programming: a minimalist approach to bugdooring embedded systems firmware},
  author={Samuel Junjie Tan and Sergey Bratus and Travis Goodspeed},
  booktitle={ACSAC},
  year={2014}
}
We demonstrate a simple set of interrupt-related vulnerability primitives that, despite being apparently innocuous, give attackers full control of a microcontroller platform. We then present a novel, minimalist approach to constructing deniable bugdoors for microcontroller firmware, and contrast this approach with the current focus of exploitation research on demonstrations of maximum computational power that malicious computation can achieve. Since the introduction of Return-oriented… CONTINUE READING