Computer Vulnerabilities.pdf
(
476 KB
)
Pobierz
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
Computer Vulnerabilities
http://kickme.to/tiger/
Computer Vulnerabilities
Written by Eric Knight, C.I.S.S.P.
Last Revision: March 8, 2000 release 4
Original Publication: March 6, 2000
DRAFT
This publication is Copyright © 2000 by Eric Knight, All Rights Reserved
Any feedback can be sent to knight@securityparadigm.com
Dedication
This book is dedicated to the people that believed in vulnerabilities enough to give some of their life toward
making this book a reality:
Kevin Reynolds, William Spencer, Andrew Green, Brian Martin, Scott Chasin, and Elias Levy
And also I wish to dedicate this to my parents, Dr. Douglas Knight and Rose Marie Knight, for giving me
the freedom even at a very young age to keep an open mind and encourage me to pursue my interests,
believing that I would not let them down.
Without each of these people, all of whom have inspired me, directed me, aided me, and informed me, it is
doubtful that this book would have ever been written.
Table of Contents
INTRODUCTION ........................................................................................................................................ 6
ANATOMY OF A VULNERABILITY ......................................................................................................7
V
ULNERABILITY
A
TTRIBUTES
..................................................................................................................... 8
Fault........................................................................................................................................................ 9
Severity ................................................................................................................................................... 9
Authentication....................................................................................................................................... 10
Tactic .................................................................................................................................................... 10
Consequence ......................................................................................................................................... 11
A
TTRIBUTES AND
V
ULNERABILITIES
......................................................................................................... 11
LOGIC ERRORS ....................................................................................................................................... 12
O
PERATING
S
YSTEM
V
ULNERABILITIES
..................................................................................................... 12
A
PPLICATION
S
PECIFIC
V
ULNERABILITIES
................................................................................................. 13
N
ETWORK
P
ROTOCOL
D
ESIGN
................................................................................................................... 13
F
ORCED
T
RUST
V
IOLATIONS
..................................................................................................................... 14
SOCIAL ENGINEERING ......................................................................................................................... 15
G
AINING
A
CCESS
....................................................................................................................................... 15
“I forgot my password!”....................................................................................................................... 15
“What is your password?” ................................................................................................................... 16
Fishing for Information ........................................................................................................................ 17
Trashing ................................................................................................................................................ 17
Janitorial Right ..................................................................................................................................... 17
C
RIMINAL
S
ABOTAGE
................................................................................................................................17
Corporate Sabotage .............................................................................................................................. 17
Internal Sabotage.................................................................................................................................. 18
Extortion ............................................................................................................................................... 18
COMPUTER WEAKNESS........................................................................................................................ 19
S
ECURITY THROUGH
O
BSCURITY
............................................................................................................... 19
E
NCRYPTION
.............................................................................................................................................. 19
Cryptographic Short Cuts ..................................................................................................................... 20
Speed of Computer................................................................................................................................ 20
Lack of a Sufficiently Random Key ....................................................................................................... 20
P
ASSWORD
S
ECURITY
................................................................................................................................20
S
ECURE
H
ASHES
........................................................................................................................................ 20
A
GED
S
OFTWARE AND
H
ARDWARE
........................................................................................................... 21
P
EOPLE
...................................................................................................................................................... 21
POLICY OVERSIGHTS............................................................................................................................ 22
R
ECOVERY OF
D
ATA
.................................................................................................................................. 22
R
ECOVERY OF
F
AILED
H
ARDWARE
............................................................................................................ 23
I
NVESTIGATION OF
I
NTRUDERS
.................................................................................................................. 23
I
NVESTIGATION OF WHEN THE
C
OMPANY IS
A
CCUSED OF
I
NTRUDING ON
O
THERS
.................................... 23
P
ROSECUTION OF
I
NTRUDERS
.................................................................................................................... 23
P
ROSECUTION OF
C
RIMINAL
E
MPLOYEES
.................................................................................................. 23
R
EPORTING OF
I
NTRUDERS AND
C
RIMINAL
E
MPLOYEES TO THE
P
ROPER
A
GENCIES
................................. 23
P
HYSICAL
S
ECURITY OF THE
S
ITE
.............................................................................................................. 24
E
LECTRICAL
S
ECURITY OF THE
S
ITE
.......................................................................................................... 24
T
HEFT OF
E
QUIPMENT
............................................................................................................................... 24
T
HEFT OF
S
OFTWARE
................................................................................................................................. 24
FAULT......................................................................................................................................................... 25
C
ODING
F
AULTS
........................................................................................................................................ 25
Synchronization Errors ......................................................................................................................... 25
Race Condition Errors........................................................................................................................................25
Temporary File Race Condition.....................................................................................................................26
Serialization Errors ............................................................................................................................................26
Network Packet Sequence Attacks.................................................................................................................26
Condition Validation Errors ................................................................................................................. 26
Failure to Handle Exceptions .............................................................................................................................27
Temporary Files and Symlinks ......................................................................................................................27
Usage of the mktemp() System Call ..............................................................................................................27
Input Validation Error ........................................................................................................................................28
Buffer Overflows ...........................................................................................................................................28
Origin Validation Error ......................................................................................................................................28
Broken Logic / Failure To Catch In Regression Testing................................................................................28
Access Validation Error .....................................................................................................................................29
E
MERGENT
F
AULTS
................................................................................................................................... 29
Configuration Errors ............................................................................................................................ 29
Wrong Place.......................................................................................................................................................29
Setup Parameters................................................................................................................................................29
Access Permissions ............................................................................................................................................30
SETUID Files In /sbin or /usr/sbin ................................................................................................................30
Log Files with World Access.........................................................................................................................30
Work Directories with World Access ............................................................................................................31
Installed In Wrong Place ....................................................................................................................................31
Over-Optimistic Security Permissions...........................................................................................................31
Policy Error ........................................................................................................................................................31
Backup Insecurity ..........................................................................................................................................32
Environment Faults............................................................................................................................... 32
IFS Vulnerability................................................................................................................................................32
Environment Variable Settings ..........................................................................................................................33
Shell Interpreter Vulnerabilities .........................................................................................................................34
E
NVIRONMENTAL
F
AULT
T
AXONOMIES
..................................................................................................... 34
SEVERITY .................................................................................................................................................. 36
A
DMINISTRATOR
A
CCESS
.......................................................................................................................... 36
R
EAD
R
ESTRICTED
F
ILES
........................................................................................................................... 36
R
EGULAR
U
SER
A
CCESS
............................................................................................................................ 36
S
POOFING
.................................................................................................................................................. 37
N
ON
-D
ETECTABILITY
................................................................................................................................37
D
ENIAL OF
S
ERVICE
................................................................................................................................... 37
TACTICS..................................................................................................................................................... 38
P
HYSICAL
A
CCESS
..................................................................................................................................... 38
L
OCAL
A
CCESS
.......................................................................................................................................... 38
S
ERVER
A
CCESS
........................................................................................................................................ 38
C
LIENT
S
IDE
.............................................................................................................................................. 38
M
AN
-
IN
-
THE
-M
IDDLE
................................................................................................................................39
C
UMULATIVE
T
ACTICS
.............................................................................................................................. 39
AUTHENTICATION ................................................................................................................................. 40
N
O
A
UTHORIZATION
R
EQUIRED
................................................................................................................ 40
A
UTHORIZATION
R
EQUIRED
...................................................................................................................... 40
CONSEQUENCE........................................................................................................................................ 41
Plik z chomika:
sebaw83
Inne pliki z tego folderu:
Operating System Vocabulary Words.doc
(32 KB)
100% illustrated guide to the pc hardware 1992.pdf
(2351 KB)
200 Ways To Revive A Hard Drive.rtf
(480 KB)
Become A Game Developer.zip
(503 KB)
Computer Vulnerabilities.pdf
(476 KB)
Inne foldery tego chomika:
A Plus Certification I
Algorithms And Data Structures In C++
Disk Fragmentation Handbook
FORBIDIN
Graphics, etc
Zgłoś jeśli
naruszono regulamin