|
What do these threats have in common?
|
| bet | 11/15 | | Sana | 30.03.2021 | | Hajmi | 58,92 Kb. | | #13786 |
What do these threats have in common?
Improperly gaining unrestricted rights (becoming a "administrator").
Running untrusted data as native code in a trusted process, such as by buffer overrun.
Spoofing identity to gain access to resources not otherwise available.
Examples
Buffer overruns, such as handcrafted stacks in a GetAdmin attack, causing user code to be executed at an elevated privilege and thereby compromising the entire operating system's trusted computing base.
The ability to run executables without the (privileged) user's consent can allow the perpetrator to perform privileged operations, such as making himself or herself a privileged user.
Rogue OCX/ActiveX control with malicious code.
Missing impersonation in the server, or client-side impersonation such as the one leveraged by SecHole.exe, causes the server to do privileged operations on behalf of an unauthorized user, thereby effectively raising the privilege level of the malicious user.
Missing or improper access checks in the security subsystem itself can result in privilege elevation. For example, if group membership of administrators was updated without an access check, it would allow an unauthorized user to become a system administrator.
|
| |
