File Hijacking Vulnerability: The Elephant in the Room
Описание
File Hijacking Vulnerability: The Elephant in the Room - NDSS Symposium
www.ndss-symposium.org
Подробности в документе ниже
-
XSS.stack #1 – первый литературный журнал от юзеров форума
Мануал/Книга Уязвимости - File Hijacking
- Автор темы weaver
- Дата начала
Описание
www.ndss-symposium.org
Подробности в документе ниже
File Hijacking Vulnerabilities (FHVulns) and their consequences:
- DLL Hijacking in Windows Applications :
- In Windows operating systems, DLL (Dynamic Link Library) hijacking is a prevalent form of file hijacking vulnerability. This vulnerability occurs when an application loads a dynamic link library without specifying the full path, allowing an attacker to place a malicious DLL with the same name in a location searched by the application's loading process.
- An infamous example is the Stuxnet worm, which exploited DLL hijacking vulnerabilities in Windows to infect systems. Stuxnet targeted Siemens SCADA (Supervisory Control and Data Acquisition) systems, aiming to sabotage Iran's nuclear program. By hijacking legitimate Windows DLLs, Stuxnet injected malicious code into critical systems, causing physical damage to centrifuges and disrupting Iran's uranium enrichment process.
- WordPress Plugin File Upload Vulnerabilities :
- Many WordPress plugins allow users to upload files, such as images or documents, to enhance website functionality. However, vulnerabilities in file upload functionality can be exploited by attackers to upload and execute malicious scripts.
- An example is the TimThumb vulnerability, a popular image resizing script used by numerous WordPress themes and plugins. Exploiting a file upload vulnerability in TimThumb, attackers were able to upload and execute arbitrary PHP scripts on compromised websites. This allowed them to deface websites, distribute malware, or even gain unauthorized access to sensitive data stored on the server.
- Adobe Acrobat and Reader PDF File Hijacking :
- Adobe Acrobat and Reader are widely used applications for viewing and editing PDF documents. In the past, these applications have been plagued by File Hijacking Vulnerabilities that allow attackers to execute arbitrary code by tricking users into opening malicious PDF files.
- One notable example is the CVE-2010-1240 vulnerability, which affected Adobe Reader and Acrobat versions 9.x and earlier on Windows and Mac OS X. Exploiting this vulnerability, an attacker could craft a specially crafted PDF file containing a malicious executable that gets executed when the PDF is opened. This allowed attackers to take control of the affected system, steal sensitive information, or install malware.
- Android External Storage File Hijacking :
- Android operating system has faced numerous security challenges, including File Hijacking Vulnerabilities related to external storage (SD card). Historically, Android apps have been able to read and write files to external storage without proper permission checks, leading to potential exploitation by malicious apps.
- For example, the "Master Key" vulnerability (CVE-2013-4787) discovered in 2013 affected virtually all Android devices. This vulnerability allowed attackers to modify APK files without invalidating the application's digital signature. Consequently, attackers could inject malicious code into legitimate apps, creating a backdoor for further exploitation, data theft, or device compromise.