Fuzzing and Exploiting Virtual Channels in Microsoft Remote Desktop Protocol for Fun and Profit

Explore the application of coverage-based fuzzing to the RDP client, focusing on virtual channels in Microsoft Remote Desktop Protocol. Delve into the complex functionalities of RDP, including Sound, Graphics (GDI and RemoteFX), USB, Filesystem, and SmartCard, which involve parsing and allocation of dynamic data. Learn about the researchers' approach to targeting virtual channels for fuzzing, aiming to uncover numerous crashes. This 39-minute Black Hat conference talk, presented by Chun Sung Park, Yeongjin Jang, Seungjoo Kim, and Ki Taek Lee, shares their adventure in fuzzing and exploiting RDP virtual channels, offering insights into potential vulnerabilities and security implications.

Fuzzing and Exploiting Virtual Channels in Microsoft Remote Desktop Protocol for Fun and Profit