Vulnerability Types 1.6 Flashcards
Scope of Vulnerabilities
Digital, physical, programming, process, procedure, network design, there are many types of ways to exploit a security system.
Race Condition
A programming conundrum. Sometimes a computer isn’t able to process rapid inputs in succession well. If there is a failure, or lack of a validation system and the computer system is unable to properly execute its intended function. This could lead to system loops, improper data validation, or a complete lack of function all together.
End-of-life Vulnerability
When the vendor stops supporting the software/hardware the product may become vulnerable to new exploits. These exploits can still cause problems for users. Use up to date software.
Embedded System Vulnerabilities
Doorbells, microwave ovens, routers etc. are/can be imbedded systems. Often we only see the user interface of these devices. Usually they are using outdated software. They don’t necessarily need to upgrade them but they may still be vulnerable.
Lack of Vendor Support
Vendors are slow/lazy/unable to patch known vulnerabilities.
Improper input handling
Poor authentication programming allowing for attackers to do injections, buffer overflows, DDOS, etc.
Improper error handling
Errors occur in software but if there is too much information provided in an error message, the attackers can use the information to exploit the error and gain access.
Misconfiguration/weak configuration
Attackers will find poorly protected access points.
Default configurations
Many users never change the default logins. Mirai botnet takes advantage of default configurations for a massive variety of different systems. Cameras, doorbells, garage systems etc. Mirai is open source software…
Untrained users
One untrained user can create a breach. Training is critical. Email training doesn’t work. Training is time consuming, expensive, but worth it.
Improperly configured accounts
Abandoned and unnecessary accounts. Test accounts, old accounts, can be exploited. Frequently audit your existing user accounts. Make sure they have the proper access and only the authorized users have elevated access.
Weak cipher suites
Some cipher’s are easier to crack than others. Always use the best cipher suite.
Memory/buffer vulnerabilities
Memory leaks can slowly grow and eventually uses all the memory and crashes the system. Integer overflow; a large number placed into a smaller sized space. Where does the extra number go? Poor programming is the only reason this would happen. Buffer overflows etc.
System sprawl/undocumented assets
More of a problem for big organizations with many computers with different needs. Different operating systems, test platforms, etc. Keeping track of all of these systems is a challenge. It’s easy to miss a forgotten computer under a desk, part of a retired system etc. If these systems are not patched, they become vulnerable.
Architecture/design/access point weaknesses
The best security system fails if you don’t have locks on the doors. Examine every access point, including your business partner access etc.
