BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//conference.c3w.at//bsv2024//PBFPNF
BEGIN:VTIMEZONE
TZID:Europe/Vienna
BEGIN:STANDARD
DTSTART:20001029T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10
TZNAME:CET
TZOFFSETFROM:+0200
TZOFFSETTO:+0100
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000326T020000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=3
TZNAME:CEST
TZOFFSETFROM:+0100
TZOFFSETTO:+0200
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-bsv2024-CEY7FF@cfp.bsidesvienna.at
DTSTART;TZID=Europe/Vienna:20241123T101000
DTEND;TZID=Europe/Vienna:20241123T105500
DESCRIPTION:In this presentation\, we will delve into the often overlooked 
 security risks associated with macOS (.pkg) and Windows (.msi) installer p
 ackages. Installers are a critical part of software deployment\, yet they 
 can harbor significant vulnerabilities that\, if exploited\, can lead to p
 rivilege escalation and remote code execution (RCE).\n\nWe will start by u
 npacking the structure of macOS and Windows installer packages\, shedding 
 light on their internal components and the common security flaws that can 
 be exploited. Through real-world examples and demonstrations\, we will exp
 lore how attackers can leverage these flaws to gain unauthorized access an
 d control over systems.\n\nAttendees will learn about the following key ar
 eas:\n\nUnderstanding Installer Packages: A comprehensive overview of the 
 structure and function of macOS .pkg and Windows .msi files.\nCommon Secur
 ity Flaws: Identification and explanation of typical vulnerabilities found
  in installer packages.\nPrivilege Escalation: How malicious actors exploi
 t installer flaws to escalate privileges on both macOS and Windows platfor
 ms.
DTSTAMP:20260514T112600Z
LOCATION:Track 2 (3.1 (Kreativ))
SUMMARY:The Dark Side of Installers: Security Flaws in macOS and Windows - 
 Giriraj Ravichandran\, Naveen S
URL:https://cfp.bsidesvienna.at/bsv2024/talk/CEY7FF/
END:VEVENT
END:VCALENDAR