DOCSLIB.ORG

An Analysis of Botnet Vulnerabilities

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
An Analysis of Botnet Vulnerabilities Air Force Institute of Technology AFIT Scholar Theses and Dissertations Student Graduate Works 6-8-2008 An Analysis of Botnet Vulnerabilities Sean W. Hudson Follow this and additional works at: https://scholar.afit.edu/etd Part of the Digital Communications and Networking Commons, and the Information Security Commons Recommended Citation Hudson, Sean W., "An Analysis of Botnet Vulnerabilities" (2008). Theses and Dissertations. 3101. https://scholar.afit.edu/etd/3101 This Thesis is brought to you for free and open access by the Student Graduate Works at AFIT Scholar. It has been accepted for inclusion in Theses and Dissertations by an authorized administrator of AFIT Scholar. For more information, please contact [email protected]. AN ANALYSIS OF BOTNET VULNERABILITIES THESIS Sean W. Hudson, Captain, USAF AFIT/GCE/ENG/07-05 DEPARTMENT OF THE AIR FORCE AIR UNIVERSITY AIR FORCE INSTITUTE OF TECHNOLOGY Wright-Patterson Air Force Base, Ohio APPROVED FOR PUBLIC RELEASE; DISTRIBUTION UNLIMITED The views expressed in this thesis are those of the author and do not reflect the official policy or position of the United States Air Force, Department of Defense, or the U.S. Government. AFIT/GCE/ENG/07-05 AN ANALYSIS OF BOTNET VULNERABILITIES THESIS Presented to the Faculty Department of Electrical and Computer Engineering Graduate School of Engineering and Management Air Force Institute of Technology Air University Air Education and Training Command In Partial Fulfillment of the Requirements for the Degree of Master of Science in Computer Engineering Sean W. Hudson, BS Captain, USAF June 2007 APPROVED FOR PUBLIC RELEASE; DISTRIBUTION UNLIMITED AFIT/GCE/ENG/07-05 AN ANALYSIS OF BOTNET VULNERABILITIES Sean W. Hudson, BS Captain, USAF Approved: _______/signed/_____________________ 06/08/2007 Rusty O. Baldwin, Ph.D. (Chairman) Date ____/signed/________________________ 06/08/2007 Barry E. Mullins, Ph.D. (Member) Date ____/signed/__________________________ 06/08/2007 Robert F. Mills, Ph.D. (Member) Date AFIT/GCE/ENG/07-05 Abstract Botnets are a significant threat to computer networks and data stored on networked computers. The ability to inhibit communication between servers controlling the botnet and individual hosts would be an effective countermeasure. The objective of this research was to find vulnerabilities in Unreal IRCd that could be used to shut down the server. Analysis revealed that Unreal IRCd is a very mature and stable IRC server and no significant vulnerabilities were found. While this research does not eliminate the possibility that a critical vulnerability is present in the Unreal IRCd software, none were identified during this effort. AFITiv For my wife, for her caring and support throughout the course of this thesis effort v Acknowledgments I would like to express my sincere appreciation to my faculty advisor, Dr. Rusty O. Baldwin, for his unwavering support and encouragement throughout the course of this thesis effort. Sean W. Hudson vi Table of Contents Acknowledgments.............................................................................................................. vi Table of Contents.............................................................................................................. vii List of Figures.................................................................................................................... ix List of Tables .......................................................................................................................x Abstract.............................................................................................................................. iv I. Introduction .....................................................................................................................1 1.1 Background.............................................................................................................1 1.2 Problem Statement..................................................................................................1 1.3 Research Objectives ...............................................................................................2 1.4 About this Document..............................................................................................2 II. Literature Review............................................................................................................3 2.1 Introduction ............................................................................................................3 2.2 Bots.........................................................................................................................3 2.3 Internet Relay Chat.................................................................................................4 2.4 Unreal IRC..............................................................................................................5 2.5 Dynamic DNS ........................................................................................................7 2.6 Detection Methods..................................................................................................7 2.7 Infiltration...............................................................................................................8 2.8 Vulnerability Identification ....................................................................................9 2.9 Related Research ..................................................................................................11 2.10 Summary.............................................................................................................14 III. Methodology................................................................................................................15 3.1 Problem Definition ...............................................................................................15 vii 3.2 Static Analysis......................................................................................................16 3.3 Dynamic Analysis ................................................................................................22 3.4 System Boundaries ...............................................................................................23 3.5 System Services....................................................................................................24 3.6 Workload ..............................................................................................................24 3.7 Performance Metrics ............................................................................................24 3.8 Parameters ............................................................................................................25 3.9 Factors ..................................................................................................................26 3.10 Evaluation Technique.........................................................................................26 3.11 Experimentation Design .....................................................................................27 3.12 Summary.............................................................................................................27 IV. Analysis and Results....................................................................................................28 4.1 Results and Analysis of Individual Measures ......................................................28 4.2 Summary...............................................................................................................33 V. Conclusions and Recommendations ............................................................................34 5.1 Overview and Conclusions...................................................................................34 5.2 Recommendations for Future Research................................................................34 Bibliography ......................................................................................................................36 Vita ………………………………………………………………………………………39 viii List of Figures Page Figure 1: System Under Test ............................................................................................ 23 Figure 2: Memory Utilization 10,000 Closed Connections.............................................. 28 Figure 3: Memory Utilization 50,000 Closed Connections.............................................. 29 Figure 4: Memory Utilization 100,000 Closed Connections............................................ 30 Figure 5: Memory Utilization 10,000 Attempted Connections ........................................ 31 Figure 6: Memory Utilization 50,000 Attempted Connections ........................................ 32 Figure 7: Memory Utilization 100,000 Attempted Connections ...................................... 32 ix List of Tables Page Table 1: Unreal IRCd Hardware Specifications ............................................................... 25 Table 2: Factors and their levels....................................................................................... 26 x An Analysis of Botnet Vulnerabilities I. Introduction 1.1 Background Bots are software agents designed to automatically perform tasks. Examples include web-spiders that catalog the Internet and bots found in popular online games. Hackers use bots to infect and control large numbers of computers called a botnet [BSA07]. An expert recently called botnets the “No.1 emerging Internet threat [Sie07].” Botnets are responsible for
Load more

Recommended publications
  • Universidad Pol Facultad D Trabajo
    UNIVERSIDAD POLITÉCNICA DE MADRID FACULTAD DE INFORMÁTICA TRABAJO FINAL DE CARRERA ESTUDIO DEL PROTOCOLO XMPP DE MESAJERÍA ISTATÁEA, DE SUS ATECEDETES, Y DE SUS APLICACIOES CIVILES Y MILITARES Autor: José Carlos Díaz García Tutor: Rafael Martínez Olalla Madrid, Septiembre de 2008 2 A mis padres, Francisco y Pilar, que me empujaron siempre a terminar esta licenciatura y que tanto me han enseñado sobre la vida A mis abuelos (q.e.p.d.) A mi hijo icolás, que me ha dejado terminar este trabajo a pesar de robarle su tiempo de juego conmigo Y muy en especial, a Susana, mi fiel y leal compañera, y la luz que ilumina mi camino Agradecimientos En primer lugar, me gustaría agradecer a toda mi familia la comprensión y confianza que me han dado, una vez más, para poder concluir definitivamente esta etapa de mi vida. Sin su apoyo, no lo hubiera hecho. En segundo lugar, quiero agradecer a mis amigos Rafa y Carmen, su interés e insistencia para que llegara este momento. Por sus consejos y por su amistad, les debo mi gratitud. Por otra parte, quiero agradecer a mis compañeros asesores militares de Nextel Engineering sus explicaciones y sabios consejos, que sin duda han sido muy oportunos para escribir el capítulo cuarto de este trabajo. Del mismo modo, agradecer a Pepe Hevia, arquitecto de software de Alhambra Eidos, los buenos ratos compartidos alrrededor de nuestros viejos proyectos sobre XMPP y que encendieron prodigiosamente la mecha de este proyecto. A Jaime y a Bernardo, del Ministerio de Defensa, por haberme hecho descubrir las bondades de XMPP.
    [Show full text]
  • Freiesmagazin 06/2011
    freiesMagazin Juni 2011 Topthemen dieser Ausgabe Ubuntu 11.04 – Vorstellung des Natty Narwhal Seite 4 Am 28. April 2011 wurde Ubuntu 11.04 freigegeben. Der Artikel gibt einen Überblick über die Neuerungen der Distribution mit besonderem Augenmerk auf das neue Desktop-System „Unity“, welches im Vorfeld bereits für viel Furore sorgte. (weiterlesen) GNOME 3.0: Bruch mit Paradigmen Seite 15 Mit der Freigabe von GNOME 3 bricht der Entwicklerkreis rund um die Desktopumgebung mit vielen gängigen Paradigmen der Benutzerführung und präsentiert ein weitgehend überarbeite- tes Produkt, das zahlreiche Neuerungen mit sich bringt. Drei wesentliche Punkte sind in die neue Generation der Umgebung eingegangen: eine Erneuerung der Oberfläche, Entfernung von unnötigen Komponenten und eine bessere Außendarstellung. (weiterlesen) UnrealIRC – gestern „Flurfunk“, heute „Chat“ Seite 24 Ungern brüllt man Anweisungen von Büro zu Büro. Damit Angestellte miteinander kommunizie- ren können, wird vielerorts zum Telefon gegriffen. Wird bereits telefoniert, muss die dienstliche E-Mail herhalten, um Kommunikationsbedürfnisse zu befriedigen. Was aber, wenn die Leitung belegt und das Senden einer E-Mail derzeit nicht möglich ist? Ein Chat ist die Lösung für das Problem. (weiterlesen) © freiesMagazin CC-BY-SA 3.0 Ausgabe 06/2011 ISSN 1867-7991 MAGAZIN Editorial Traut Euch und macht mit Wer nicht wagt, der nicht gewinnt Dies gilt im Übrigen für fast alles im Leben: sei Inhalt Die Reaktionen auf unsere These im Editorial es die Frage nach einer Gehaltserhöhung, das des letzten Monats [1] waren recht gut. Zur Erin- erste zögerliche Gespräch mit seinem Schwarm Linux allgemein nerung: Wir fragten, ob – nach der bescheidenen oder der Umzug ins Ausland, um eines neues Le- Ubuntu 11.04 – Vorstellung von Natty S.
    [Show full text]
  • Informational Internet Relay
    Network Working Group C. Kalt Request for Comments: 2813 April 2000 Updates: 1459 Category: Informational Internet Relay Chat: Server Protocol Status of this Memo This memo provides information for the Internet community. It does not specify an Internet standard of any kind. Distribution of this memo is unlimited. Copyright Notice Copyright (C) The Internet Society (2000). All Rights Reserved. Abstract While based on the client-server model, the IRC (Internet Relay Chat) protocol allows servers to connect to each other effectively forming a network. This document defines the protocol used by servers to talk to each other. It was originally a superset of the client protocol but has evolved differently. First formally documented in May 1993 as part of RFC 1459 [IRC], most of the changes brought since then can be found in this document as development was focused on making the protocol scale better. Better scalability has allowed existing world-wide networks to keep growing and reach sizes which defy the old specification. Kalt Informational [Page 1] RFC 2813 Internet Relay Chat: Server Protocol April 2000 Table of Contents 1. Introduction ............................................... 3 2. Global database ............................................ 3 2.1 Servers ................................................ 3 2.2 Clients ................................................ 4 2.2.1 Users ............................................. 4 2.2.2 Services .......................................... 4 2.3 Channels ..............................................
    [Show full text]
  • Share-Your-Wine-Kissy-Nacha-Nalez.Pdf
    share your wine 1 lost in the pages, of a book full of life reading how we'll change the Universe when the stars fall from Heaven for they're you and I ADAM MARSHALL DOBRIN share your wine 3 It starts by seeing the idea of the questions of "are I this letter, or that letter (or every letter after "da" and maybe "ma" too)" connecting the end of simulated reality and the word Matrix and connecting that "X" to the Kiss of Judas (and Midas[0]) and the Kiss of J[1]acob[2] and the eponymous band and it's lead singer's names' link to the idea of "simulation" and of the Last Biblical Monday and of a hallowed "s" that we'll get to later. Gene Simmons, one of the Gene's of Genesis which reveals the hidden power of the "sun" linking to Silicon and to the Fifth Element through the indexed letter of 14; also to Christopher Columbus "walking on water" in the year ADIB and to a whole host of fictional characters that tie together the number 5 with this Revelation that Prince Adam's letter "He" indexes as 5 just like Voltron's "V" and 21 Pilot's flashlight in the song "Cancer" and in a normal functional society these kinds of synchronistic connections would be call and cause for attention and for news--and here they act to shine a light on the darkness... something like "it's been shaken to death, but still ... no real comment;" at least that's really what I see.
    [Show full text]
  • Ubuntu Server Guide Ubuntu Server Guide Copyright © 2010 Canonical Ltd
    Ubuntu Server Guide Ubuntu Server Guide Copyright © 2010 Canonical Ltd. and members of the Ubuntu Documentation Project3 Abstract Welcome to the Ubuntu Server Guide! It contains information on how to install and configure various server applications on your Ubuntu system to fit your needs. It is a step-by-step, task-oriented guide for configuring and customizing your system. Credits and License This document is maintained by the Ubuntu documentation team (https://wiki.ubuntu.com/DocumentationTeam). For a list of contributors, see the contributors page1 This document is made available under the Creative Commons ShareAlike 2.5 License (CC-BY-SA). You are free to modify, extend, and improve the Ubuntu documentation source code under the terms of this license. All derivative works must be released under this license. This documentation is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE AS DESCRIBED IN THE DISCLAIMER. A copy of the license is available here: Creative Commons ShareAlike License2. 3 https://launchpad.net/~ubuntu-core-doc 1 ../../libs/C/contributors.xml 2 /usr/share/ubuntu-docs/libs/C/ccbysa.xml Table of Contents 1. Introduction ........................................................................................................................... 1 1. Support .......................................................................................................................... 2 2. Installation ............................................................................................................................
    [Show full text]
  • Analysis of Rxbot
    ANALYSIS OF RXBOT A Thesis Presented to The Faculty of the Department of Computer Science San José State University In Partial Fulfillment of the Requirements for the Degree Master of Science by Esha Patil May 2009 1 © 2009 Esha Patil ALL RIGHTS RESERVED 2 SAN JOSÉ STATE UNIVERSITY The Undersigned Thesis Committee Approves the Thesis Titled ANALYSIS OF RXBOT by Esha Patil APPROVED FOR THE DEPARTMENT OF COMPUTER SCIENCE ___________________________________________________________ Dr. Mark Stamp, Department of Computer Science Date __________________________________________________________ Dr. Robert Chun, Department of Computer Science Date __________________________________________________________ Dr. Teng Moh, Department of Computer Science Date APPROVED FOR THE UNIVERSITY _______________________________________________________________ Associate Dean Office of Graduate Studies and Research Date 3 ABSTRACT ANALYSIS OF RXBOT by Esha Patil In the recent years, botnets have emerged as a serious threat on the Internet. Botnets are commonly used for exploits such as distributed denial of service (DDoS) attacks, identity theft, spam, and click fraud. The immense size of botnets (hundreds or thousands of PCs connected in a botnet) increases the ubiquity and speed of attacks. Due to the criminally motivated uses of botnets, they pose a serious threat to the community. Thus, it is important to analyze known botnets to understand their working. Most of the botnets target security vulnerabilities in Microsoft Windows platform. Rxbot is a win32 bot that belongs to the Agobot family. This paper presents an analysis of Rxbot. The observations of the analysis process provide in-depth understanding of various aspects of the botnet lifecycle such as botnet architecture, network formation, propagation mechanisms, and exploit capabilities. The study of Rxbot reveals certain tricks and techniques used by the botnet owners to hide their bots and bypass some security softwares.
    [Show full text]
  • Botnets, Zombies, and Irc Security
    Botnets 1 BOTNETS, ZOMBIES, AND IRC SECURITY Investigating Botnets, Zombies, and IRC Security Seth Thigpen East Carolina University Botnets 2 Abstract The Internet has many aspects that make it ideal for communication and commerce. It makes selling products and services possible without the need for the consumer to set foot outside his door. It allows people from opposite ends of the earth to collaborate on research, product development, and casual conversation. Internet relay chat (IRC) has made it possible for ordinary people to meet and exchange ideas. It also, however, continues to aid in the spread of malicious activity through botnets, zombies, and Trojans. Hackers have used IRC to engage in identity theft, sending spam, and controlling compromised computers. Through the use of carefully engineered scripts and programs, hackers can use IRC as a centralized location to launch DDoS attacks and infect computers with robots to effectively take advantage of unsuspecting targets. Hackers are using zombie armies for their personal gain. One can even purchase these armies via the Internet black market. Thwarting these attacks and promoting security awareness begins with understanding exactly what botnets and zombies are and how to tighten security in IRC clients. Botnets 3 Investigating Botnets, Zombies, and IRC Security Introduction The Internet has become a vast, complex conduit of information exchange. Many different tools exist that enable Internet users to communicate effectively and efficiently. Some of these tools have been developed in such a way that allows hackers with malicious intent to take advantage of other Internet users. Hackers have continued to create tools to aid them in their endeavors.
    [Show full text]
  • Anope Ircd Protocol Module
    Anope Ircd Protocol Module Gracious and nyctitropic Tedie stroll expediently and gasp his Ara scholastically and numerically. Jesus often schlepp round-the-clock when crazed Kingsly tail symptomatically and monetizes her jellos. Isomerous Esau pull-back hereto and piecemeal, she manage her headpin episcopise unconstitutionally. Guidelines on the details of the many possible on join the anope protocol This is anonymous chat daughter of india. Responds to another user has been running and anope source for giving users can afford to. Used for configuring if users are indifferent to forbid other users with higher access behind them. Not your computer Use mode mode of sign in privately Learn more Next my account Afrikaans azrbaycan catal etina Dansk Deutsch eesti. Package head-armv6-defaultircanope Failed for anope. Statistics about an incomplete, but as many ircds have their own life on. Ident FreeBSD headircanopeMakefile 412347 2016-04-01 14037Z mat. Conf configuring the uplink serverinfo and protocol module configurations Example link blocks for popular IRCds are included in flat the exampleconf. 20Modulesunreal AnopeWiki. Anope program designed specifically for compilation in addition of. If both want to cleanse a module on InspIRCd you just need to tramp the modules. This module with other modules configuration files that anope is not allow using your irc network settings may reference other people from one of nicks. C 2003-2017 Anope Team Contact us at teamanopeorg. This may yet? Jan 17 040757 2019 SERVER serviceslocalhostnet. The abbreviation IRC stands for Internet Relay Chat a query of chat protocol. File athemechanges of Package atheme5060 openSUSE. Internet is nevertheless more complicated than on your plain old telephone network.
    [Show full text]
  • HTTP: IIS "Propfind" Rem HTTP:IIS:PROPFIND Minor Medium
    HTTP: IIS "propfind"HTTP:IIS:PROPFIND RemoteMinor DoS medium CVE-2003-0226 7735 HTTP: IkonboardHTTP:CGI:IKONBOARD-BADCOOKIE IllegalMinor Cookie Languagemedium 7361 HTTP: WindowsHTTP:IIS:NSIISLOG-OF Media CriticalServices NSIISlog.DLLcritical BufferCVE-2003-0349 Overflow 8035 MS-RPC: DCOMMS-RPC:DCOM:EXPLOIT ExploitCritical critical CVE-2003-0352 8205 HTTP: WinHelp32.exeHTTP:STC:WINHELP32-OF2 RemoteMinor Buffermedium Overrun CVE-2002-0823(2) 4857 TROJAN: BackTROJAN:BACKORIFICE:BO2K-CONNECT Orifice 2000Major Client Connectionhigh CVE-1999-0660 1648 HTTP: FrontpageHTTP:FRONTPAGE:FP30REG.DLL-OF fp30reg.dllCritical Overflowcritical CVE-2003-0822 9007 SCAN: IIS EnumerationSCAN:II:IIS-ISAPI-ENUMInfo info P2P: DC: DirectP2P:DC:HUB-LOGIN ConnectInfo Plus Plus Clientinfo Hub Login TROJAN: AOLTROJAN:MISC:AOLADMIN-SRV-RESP Admin ServerMajor Responsehigh CVE-1999-0660 TROJAN: DigitalTROJAN:MISC:ROOTBEER-CLIENT RootbeerMinor Client Connectmedium CVE-1999-0660 HTTP: OfficeHTTP:STC:DL:OFFICEART-PROP Art PropertyMajor Table Bufferhigh OverflowCVE-2009-2528 36650 HTTP: AXIS CommunicationsHTTP:STC:ACTIVEX:AXIS-CAMERAMajor Camerahigh Control (AxisCamControl.ocx)CVE-2008-5260 33408 Unsafe ActiveX Control LDAP: IpswitchLDAP:OVERFLOW:IMAIL-ASN1 IMail LDAPMajor Daemonhigh Remote BufferCVE-2004-0297 Overflow 9682 HTTP: AnyformHTTP:CGI:ANYFORM-SEMICOLON SemicolonMajor high CVE-1999-0066 719 HTTP: Mini HTTP:CGI:W3-MSQL-FILE-DISCLSRSQL w3-msqlMinor File View mediumDisclosure CVE-2000-0012 898 HTTP: IIS MFCHTTP:IIS:MFC-EXT-OF ISAPI FrameworkMajor Overflowhigh (via
    [Show full text]
  • Ubuntu Server Guide Ubuntu Server Guide Copyright © 2016 Contributors to the Document
    Ubuntu Server Guide Ubuntu Server Guide Copyright © 2016 Contributors to the document Abstract Welcome to the Ubuntu Server Guide! It contains information on how to install and configure various server applications on your Ubuntu system to fit your needs. It is a step-by-step, task-oriented guide for configuring and customizing your system. Credits and License This document is maintained by the Ubuntu documentation team (https://wiki.ubuntu.com/DocumentationTeam). A list of contributors is below. This document is made available under the Creative Commons ShareAlike 3.0 License (CC-BY-SA). You are free to modify, extend, and improve the Ubuntu documentation source code under the terms of this license. All derivative works must be released under this license. This documentation is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE AS DESCRIBED IN THE DISCLAIMER. A copy of the license is available here: Creative Commons ShareAlike License1. Contributors to this document are: • Members of the Ubuntu Documentation Project2 • Members of the Ubuntu Server Team3 • Contributors to the Community Help Wiki4 • Other contributors can be found in the revision history of the serverguide5 and ubuntu-docs6 bzr branches available on Launchpad. 1 https://creativecommons.org/licenses/by-sa/3.0/ 2 https://launchpad.net/~ubuntu-core-doc 3 https://launchpad.net/~ubuntu-server 4 https://help.ubuntu.com/community/ 5 https://bazaar.launchpad.net/~ubuntu-core-doc/serverguide/trunk/changes 6 https://bazaar.launchpad.net/~ubuntu-core-doc/ubuntu-docs/trunk/changes Table of Contents 1.
    [Show full text]
  • Open Source Used in Cisco 910 Industrial Router 1.1
    Open Source Used In Cisco 910 Industrial Router 1.1 Cisco Systems, Inc. www.cisco.com Cisco has more than 200 offices worldwide. Addresses, phone numbers, and fax numbers are listed on the Cisco website at www.cisco.com/go/offices. Text Part Number: 78EE117C99-67490505 Open Source Used In Cisco 910 Industrial Router 1.1 1 This document contains licenses and notices for open source software used in this product. With respect to the free/open source software listed in this document, if you have any questions or wish to receive a copy of any source code to which you may be entitled under the applicable free/open source license(s) (such as the GNU Lesser/General Public License), please contact us at [email protected]. In your requests please include the following reference number 78EE117C99-67490505 Contents 1.1 bridge-utils 1.5 1.1.1 Available under license 1.2 busybox 1.20.2 1.2.1 Available under license 1.3 curl 7.32.0 1.3.1 Available under license 1.4 dhcp 4.1-ESV-R8 1.4.1 Available under license 1.5 ebtables v2.0.10-4 1.5.1 Available under license 1.6 eventlog 0.2.12 :1.el6 1.6.1 Available under license 1.7 expat 2.1.0 1.7.1 Available under license 1.8 flex 2.5.37 1.8.1 Available under license 1.9 glib 2.38.2 1.9.1 Available under license 1.10 hostapd 0.7.3 1.10.1 Available under license 1.11 iproute2 3.7.0 1.11.1 Available under license 1.12 ipsec-tools 0.8.0 1.12.1 Available under license 1.13 iptables 1.4.18 1.13.1 Available under license Open Source Used In Cisco 910 Industrial Router 1.1 2 1.14 ipv6calc 0.92.0
    [Show full text]
  • Static Security Analysis Based on Input-Related Software Faults
    Static security analysis based on input-related software faults Csaba Nagy Spiros Mancoridis Department of Software Engineering Department of Computer Science University of Szeged Drexel University Szeged, Hungary Philadelphia, USA [email protected] [email protected] Abstract scanning tool is available, it is difficult to locate security faults during a code review: in general, a good code review It is important to focus on security aspects during the can uncover around 50% of the security problems [9]. development cycle to deliver reliable software. However, This paper presents an approach to helping developers locating security faults in complex systems is difficult and locate faults that are related to security by identifying parts there are only a few effective automatic tools available to of the source code that involve user input. The focus is on help developers. In this paper we present an approach to the input-related parts of the source code, since attackers help developers locate vulnerabilities by marking parts of commonly exploit security vulnerabilities by passing mal- the source code that involve user input. We focus on input- formed input data to applications. Mishandling input data related code, since an attacker can usually take advantage can be a source of common security faults in many lan- of vulnerabilities by passing malformed input to the appli- guages that support pointer arithmetic such as C and C++. cation. The main contributions of this work are two metrics Examples of security faults are buffer overflows, format to help locate faults during a code review, and algorithms to string vulnerabilities, and integer overflows [19].
    [Show full text]