IT Baseline Protection Manual - The Information Warfare Site

Threats Catalogue Deliberate Acts Remarks
____________________________________________________________________ .........................................
T 4.8 Discovery of software vulnerabilities
Software vulnerabilities includes unintentional program errors which are not
known to the user or not yet known and constitute a security risk to the IT
system. Security loopholes are constantly being found in existing software,
including in widely used or quite new software.
Examples
Some examples of known software vulnerabilities are as follows:
- A sendmail bug under UNIX which enabled any user to execute programs
and modify files by using the sendmail UID and GID.
- The gets routine under UNIX. This was used by the fingerd program to
read a line, without any check being made of the boundaries of variables.
Thus, by means of an overflow it was possible to modify the stack in such
a way that a new shell could be started.
- cgi scripts which are supplied with www servers. Remote users were able
to access sensitive information over the www server.
- A bug in the DNS software allowed temporarily stored DNS data to be
falsified.
- Incorrect implementations of the TCP/IP stack. These enabled entire
networks to be paralysed due to oversize or otherwise manipulated packets.
____________________________________________________________________ .........................................
IT-Baseline Protection Manual: Oktober 2000