SB 23: Software Vulnerabilities

Question 1

What is the PA model?

Answer 1

A model for analyzing systems for security holes

Question 2

What can happen if privileges aren’t set properly?

Answer 2

Insufficient privileges could cause a DoS attack whilst excessive ones can enable attackers to exploit vulnerabilities.

Question 3

Why is it critical to verify the integrity of the access control file?

Answer 3

Because it controls the access to role accounts and you want to make sure the file has not been tampered with.

Question 4

Why is it important to protect memory against unauthorized/unexpected alteration?

Answer 4

Because if two subjects can alter the contents of memory then one could change data on which the 2nd relies. Each process should therefore have a protected unshared memory space. Only trusted processes should be able to access it

Question 5

What is buffer overflow?

Answer 5

Involves altering of data or injecting of instructions to be executed later.

A program writes data to a buffer beyond the buffer’s allocated memory, overwriting adjacent memory locations.

By sending in data designed to cause a buffer overflow, it is possible to write into areas known to hold executable code and replace it with malicious code, or to selectively overwrite data pertaining to the program’s state, therefore causing behavior that was not intended by the original programmer.

Morris Worm used buffer overflow as one of its attack techniques.

Question 6

What is the risk of not properly de-allocating or deleting data?

Answer 6

Dumps of memory, which can happen if an error in the program occurs, can contain information it shouldn’t. Failure to release sensitive resources can also allow unprivileged sub-processes unwanted access

Question 7

Name 5 techniques for validating conditions in programs and briefly describe each technique. What security problems can arise due to failing to perform validation?

Answer 7

1. Bounds checking
   Risks: buffer overflow
2. Type checking
   Risks: injection attacks
3. Error checking
   Risks: unhandled exceptions. Potentially revealing sensitive information or allowing attackers to exploit these errors
4. Valid data check
   Risks: injection attacks, data manipulation
5. Checking input
   Risks: injection attacks

Question 8

Un-validated input

Answer 8

Failure to check input. Can lead to attackers sending commands via input that they can use to later exploit a system.

Question 9

SQL Injection

Answer 9

A malicious SQL statement is inserted into an entry field for execution. Must exploit a vulnerability. i.e user input that is not properly filtered is not strongly typed.

Can be used to spoof identities, tamper with data, cause repudiation issues, etc.

Mitigate: pattern matching, software testing, grammar analysis. Or otherwise checking and validating the input.

Question 10

Why is it important to be aware of program dependencies?

Answer 10

If the dependencies stop functioning correctly then the program will not function correctly either. It is important to frequently check for errors and be aware of which components cannot be checked for errors.