Application Security: Exploits & Vulnerabilities

Questions and Answers

What is a significant risk associated with overly verbose error handling routines?

• They may confuse developers, leading to incorrect debugging.
• They may cause the application to perform slower.
• They may lead to resource exhaustion due to excessive logging.
• They may expose inner workings of the code, aiding attackers. (correct)

Hard-coding credentials in source code poses a security risk only if the code is intentionally disclosed.

False (B)

What is a 'backdoor vulnerability' in an authentication system, and why is it problematic?

A backdoor vulnerability is when the authentication system fails, allowing anyone with the backdoor password to bypass normal authentication. It is problematic because it allows unauthorized access to the system.

The practice of incrementally adding computing resources to support increasing demand in applications is known as ______ scaling.

vertical

Match the following concepts with their descriptions:

Resource Exhaustion = Depletion of system resources, leading to system failure Memory Leak = Failure of an application to release memory it no longer needs Pointer Dereferencing = Accessing the memory location referenced by a pointer Null Pointer Exception = An error that occurs when a program attempts to dereference a pointer with a null value

How does elasticity differ from scalability in cloud applications?

Elasticity allows scaling both up and down automatically, while scalability only adds resources. (D)

Code comments in compiled executables are a significant security risk because they expose sensitive code details to attackers.

False (B)

Explain how a memory leak can lead to resource exhaustion.

A memory leak occurs when an application fails to release memory it no longer needs. Over time, this leads to resource exhaustion as available memory is depleted, potentially causing the system to crash.

Error handling that uses ______ clauses allows developers to specify how errors should be handled in their code.

try...catch

Match the purpose with the concept.

Resilience = Adapting applications to changing demands Scalability = Incrementally adding computing resources Elasticity = Automatically provision and deprovision resources Code Integrity Measurement = Verification of the code

What is the primary purpose of code integrity measurement?

To ensure code being released matches previously approved code. (A)

Implementing input validation is sufficient to prevent all error-related security vulnerabilities.

False (B)

How can a NULL pointer exception be exploited by an attacker?

In the best case, it can cause the program to crash and provide debugging information for reconnaissance. In the worst case, it can bypass security controls.

The type of scaling that involves adding additional instances to a pool is known as ______ scaling.

horizontal

Match the security practice with its primary benefit:

Secure Coding Practices = Minimizes vulnerabilities in software applications. Error Handling = Allows developers to anticipate and correctly handle exceptions Source Code Comments = Documents design choices and workflows Application Resilience = Enables adaptation to different demands

Which of the following is a key consideration when including comments in source code?

Developers should ensure that commented versions of their code remain secret due to sensitive details. (C)

Resource exhaustion is always the result of intentional attacks on a system.

False (B)

Describe what pointer dereferencing is, and explain the potential security issue associated with it.

Pointer dereferencing is the process of accessing the memory location referenced by a pointer. A potential security issue arises if the pointer is NULL, leading to a NULL pointer exception, which can expose debugging information or bypass security controls.

A good practice for error messages is to display the ______ amount of information necessary for the user to understand the nature of the problem.

minimum

Match the following terms with their definitions:

Hard-Coding Credentials = Embedding usernames and passwords in source code. Vertical Scaling = Adding more resources to an existing computing instance. Horizontal Scaling = Adding additional instances to a pool. Error Handling = Specifying how errors should be handled.

Flashcards

Backdoor Vulnerability

A weakness where a secret password bypasses normal authentication.

Hard-Coded Credentials

Including credentials in code, risking exposure if the code is shared.

Resource Exhaustion

Occurs when systems consume all available memory, storage, or processing time.

Memory Leak

Failure to release memory after use, leading to gradual resource depletion.

Pointer Dereferencing

Accessing memory via a pointer. Critical for accessing data in memory.

Null Pointer Exception

Attempting to dereference a pointer with a NULL value, causing a program crash.

Verbose Error Handling

Displaying excessive details about the code's inner workings in error messages.

Scalability

Designing applications for incremental resource addition to meet demand.

Elasticity

Automatically provisioning resources to scale dynamically and deprovision when unneeded.

Code Integrity Measurement

The practice of using cryptographic hash functions to ensure released code matches the approved versions.

Vertical Scaling

Adding more resources to an existing computing instance.

Horizontal Scaling

Adding additional instances to a pool of resources.

Study Notes

• Malicious code and application attacks can exploit vulnerabilities in authentication systems.

Backdoor Vulnerabilities

• Backdoor vulnerabilities allow bypassing normal authentication.
• Anyone knowing the backdoor password gains access.
• If a backdoor becomes public, all code copies in production are compromised.

Hard-Coded Credentials

• Hard-coding credentials involves embedding access credentials for other services in source code.
• Accidental disclosure in public code repositories (like GitHub) exposes credentials.

Memory Management

• Applications manage memory, and poor practices undermine security.

Resource Exhaustion

• Resource exhaustion occurs when systems consume all available memory, storage, processing time, or other resources.
• This renders systems disabled or crippled.

Memory Leaks

• Memory leaks exemplify resource exhaustion.
• An application fails to return memory it no longer needs, consuming available memory and causing crashes.
• Rebooting temporarily fixes the issue, but the cycle restarts if the memory leak persists.

Pointer Dereferencing

• Pointers store addresses of other memory locations.
• Pointer dereferencing accesses the memory referenced by a pointer's address.

NULL Pointer Exceptions

• A null pointer is when a pointer is empty.
• Dereferencing a NULL pointer causes a null pointer exception.
• This may crash the program, giving attackers debugging information.
• In the worst case, it allows attackers to bypass security controls.
• Security professionals should work with developers to avoid these issues.

Error Handling - SQL Error Disclosure

• Overly verbose error handling routines can expose inner workings of code.

• Error handling routines may allow attackers to exploit the code.

• Error messages should display minimal information for the user.

• Applications should log detailed information for developers to investigate errors.

• A good general guideline is to display the minimum amount of information necessary for the user to understand the nature of the problem.

• Applications shoud then record as much information as possible for developers so they can correct the underlying issue.

Hard-Coded Credentials Part 2

• Developers may include usernames and passwords in source code.
• Developers may create hard-coded maintenance accounts for application access.

Source Code Comments

• Vulnerabilities can be introduced into code when remote users are allowed to view code comments.
• Comments should be removed from production code.

Error Handling in depth

• Must write code resilient to unexpected situations.
• Input validation alone isn't sufficient.
• Unexpected situations must be anticipated and handled with error handling code.
• Improper error handling exposes code to risks.

Try-Catch Functionality

• Many languages use try...catch functionality to specify error handling.

• Code that may cause errors is placed in a try clause.

• The catch clause specifies handling for the error situation.

• Cybersecurity professionals should embrace a defense-in-depth approach to security.

• Error handling serves as a secondary control to prevent malicious input from triggering dangerous error conditions.

Code Integrity Measurement

• This process verifies the code being released into production matches approved code using cryptographic hash functions.
• Deviations in hash values indicate code modification and require investigation.

Application Resilience

• Applications should be designed for resilience against changing demand.

Scalability

• Scalability means applications should be designed so that computing resources may be incrementally added to support increasing demand.
• Vertical scaling adds resources to an existing instance.
• Horizontal scaling adds instances to a pool.

Elasticity

• Elasticity means applications can automatically provision resources to scale when necessary and de-provision when not needed.

Secure Coding Practices

• Security issues remain consistent despite different development styles, languages, and frameworks.
• Common best practices are available to ensure software security.

Source Code Comments

• Comments are important for documentation, but can provide attackers a "road map".
• Comments can include critical security details.
• Commented code versions should remain secret.
• Compilers automatically remove comments from compiled executables.