predicting vulnerable software components
play

Predicting Vulnerable Software Components Stephan Neuhaus Thomas - PowerPoint PPT Presentation

Nov 22, 2023 •18 likes •268 views

Predicting Vulnerable Software Components Stephan Neuhaus Thomas Zimmermann Andreas Zeller Security Advisory 2005-13 Security Advisory 2005-41 Security Advisory 2006-76 Security Advisory 2005-16 Security Advisory 2005-15 Security Advisory

  1. Predicting Vulnerable Software Components Stephan Neuhaus Thomas Zimmermann Andreas Zeller

  2. Security Advisory 2005-13 Security Advisory 2005-41 Security Advisory 2006-76 Security Advisory 2005-16 Security Advisory 2005-15 Security Advisory 2005-12 Security Advisory 2005-14 Title : Privilege escalation via DOM property Title : XSS using outer window's Function object Title : Spoofing download and security dialogs Title : Heap overflow possible in UTF8 to Title : Window Injection Spoofing Title : Livefeed bookmarks can steal cookies Title : SSL "secure site" indicator spoofing overrides with overlapping windows Unicode conversion Impact : High Severity : Low Impact : High Severity : Moderate Severity : High Severity : Critical Products : Firefox 2.0 Severity : High Products : Firefox, Mozilla Suite Products : Firefox Products : Firefox, Mozilla Suite Products : Firefox, Mozilla Suite Products : Firefox, Mozilla Suite Products : Firefox, Thunderbird, Mozilla Suite Description : moz_bug_r_a4 demonstrated that Description : A website can inject content into a Description : Earlier versions of Firefox allowed Description : Various schemes were reported Description : It is possible for a UTF8 string with Description: Michael Krax demonstrates that the Function prototype regression described in Description : moz_bug_r_a4 reported several popup opened by another site if the target name javascript: and data: URLs as Livefeed bookmarks. that could cause the "secure site" lock icon to the download dialog and security dialogs can be bug 355161 could be exploited to bypass the invalid sequences to trigger a heap overflow of exploits giving an attacker the ability to install of the popup window is known. An attacker who When they updated the URL would be run in the appear and show certificate details for the wrong malicious code or steal data, requiring only that spoofed by partially covering them with an protections against cross site script (XSS) converted Unicode data. Exploitability would knows you are going to visit that other site could context of the current page and could be used to site. These could be used by phishers to make the user do commonplace actions like click on a overlapping window. Some users may not notice depend on the attackers ability to get the string injection, which could be used to steal credentials spoof the contents of the popup. steal cookies or data displayed on the page. If the their spoofs look more legitimate, particularly in the OS window border and browser statusbar into the buggy converter. General web content is link or open the context menu. The common or sensitive data from arbitrary sites or perform user were on a page with elevated privileges (for windows that hide the address bar showing the destructive actions on behalf of a logged-in user. converted elsewhere but we can't rule out the bisecting what appears to be a single dialog, and be cause in each case was privileged UI code example, about:config) when the Livefeed was true location. What other components are vulnerable? Is this new component likely to be vulnerable? ("chrome") being overly trusting of DOM nodes convinced by the spoofing text of the top-most possibility of a successful attack. updated, the feed URL could potentially run from the content window. window to click on the "Allow" or "Open" button arbitrary code on the user's machine. of the window below. 0 Vulnerabilities

  3. Vulnerability Version Code Code Code Code Database Archive Code Vulture Predictor Component Component Component

  4. Programmer Code Complexity Look for features that are Code invariant under evolution Language

  5. Imports GUI Database Certificates OS

  6. ✘ ✘ ✘ ✘ ✘ ✘ ✘ ✘ ✘ nsIContent.h ✘ ✘ ✘ ✘ ✘ ✘ nsIContentUtils.h ✘ ✘ ✘ ✔ ✘ ✘ ✘ nsIScriptSecurityManager.h

  7. ✘ ✘ ✘ ✘ ✘ ✘ ✘ ✘ ✘ ✘ nsIPrivateDOMEvent.h ✘ ✘ ✘ ✘ ✘ ✘ nsReadableUtils.h ✘ ✘ ✘

  8. Research Questions • How well do imports predict vulnerabilities? • Can imports be used for classification (vulnerable or not) and for regression (number of vulnerabilities)?

  9. Case Study: Mozilla • CVS from January 4, 2007 • 14,368 C/C++ files • 134 Security Advisories since January 2005 • Only 424 vulnerable components (4.05%) ⇒ Prediction is challenging

  12. 10,452 components in Mozilla 424 vulnerable components 4.05%

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

CSE 2221 Software I: Software Components and CSE 2231 Software II: Software Development and

CSE 2221 Software I: Software Components and CSE 2231 Software II: Software Development and

CSE 2221 Software I: Software Components and CSE 2231 Software II: Software Development and Design 8 January 2019 OSU CSE 1 Restated Learning Outcomes Theme 1: software engineering concepts Be familiar with sound software engineering

535 views • 17 slides
CSE 2221 Software I: Software Components and CSE 2231 Software II: Software Development and

CSE 2221 Software I: Software Components and CSE 2231 Software II: Software Development and

CSE 2221 Software I: Software Components and CSE 2231 Software II: Software Development and Design 7 January 2020 OSU CSE 1 Welcome to CSE 2231! Class attendance is required . You will be allowed 4 lecture absences and 4 lab

863 views • 7 slides
Why Components? Software components are binary units of independent production, acquisition,

Why Components? Software components are binary units of independent production, acquisition,

Why Components? Software components are binary units of independent production, acquisition, and deployment that interact to form a functioning system (Szyperski 1997) The rationale behind component software: Largely pushed by desktop

475 views • 13 slides
Why Components? Software components are binary units of independent production, acquisition,

Why Components? Software components are binary units of independent production, acquisition,

Why Components? Software components are binary units of independent production, acquisition, and deployment that interact to form a functioning system (Szyperski 1997) The rationale behind component software: Largely pushed by desktop

768 views • 25 slides
Software components software re-use libraries, etc. inter-language linkage the

Software components software re-use libraries, etc. inter-language linkage the

Software components software re-use libraries, etc. inter-language linkage the Microsoft way COM: the Component Object Model Visual Basic: scripting, embedding, viruses .NET C# other approaches to components

442 views • 5 slides
Components of a Graphics Software System Introduction to OpenGL Basic Components of a Graphics

Components of a Graphics Software System Introduction to OpenGL Basic Components of a Graphics

Components of a Graphics Software System Introduction to OpenGL Basic Components of a Graphics Software System Examples from: Windows GDI and OpenGL 1. Output Primitives Building blocks for drawing pictures Plotting a pixel --most

242 views • 23 slides
SOFTWARE ENGINEERING SOFTWARE QUALITY - SOFTWARE QUALITY QUALITY COMPONENTS Today we talk

SOFTWARE ENGINEERING SOFTWARE QUALITY - SOFTWARE QUALITY QUALITY COMPONENTS Today we talk

SOFTWARE ENGINEERING SOFTWARE QUALITY - SOFTWARE QUALITY QUALITY COMPONENTS Today we talk about software process quality and certification Objective quality component: properties that can be Jyrki Nummenmaa University of Tampere, CS

438 views • 5 slides
Software Components with Fractal: Reflective Software Architecture and Runtime Reconfiguration

Software Components with Fractal: Reflective Software Architecture and Runtime Reconfiguration

Software Components with Fractal: Reflective Software Architecture and Runtime Reconfiguration Martin Monperrus Creative Commons Attribution License Copying and modifying are authorized as long as proper credit is given to the author.

907 views • 35 slides
Design with Reuse Building software from reusable components 2 Software reuse In most

Design with Reuse Building software from reusable components 2 Software reuse In most

1 Design with Reuse Building software from reusable components 2 Software reuse In most engineering disciplines, systems are designed by composing existing components that have been used in other systems Software engineering

649 views • 17 slides
Predicting Energy Consumption by Extending the Palladio Component Model Symposium on Software

Predicting Energy Consumption by Extending the Palladio Component Model Symposium on Software

Stuttgart, Germany, 2014-11-27 Predicting Energy Consumption by Extending the Palladio Component Model Symposium on Software Performance (SOSP) 2014 Felix Willnecker 1 , Andreas Brunnert 1 , Helmut Krcmar 2 1 fortiss GmbH, 2 Technische

693 views • 22 slides
Embedded C/C++ Programming using Software Components Evgueni Driouk Principal Software Engineer

Embedded C/C++ Programming using Software Components Evgueni Driouk Principal Software Engineer

Enhanced Project Management for Embedded C/C++ Programming using Software Components Evgueni Driouk Principal Software Engineer MCU Development Tools 1 Outline Introduction Challenges of embedded software development What is

360 views • 19 slides
RAPTOR: Software Application for Predicting Collision Hotspots and Evaluating Site-based Road

RAPTOR: Software Application for Predicting Collision Hotspots and Evaluating Site-based Road

RAPTOR: Software Application for Predicting Collision Hotspots and Evaluating Site-based Road Safety Interventions Dr. Neil Thorpe and Dr. Lee Fawcett, School of Civil Engineering and Geosciences and School of Mathematics and Statistics,

534 views • 17 slides
Achieving Quality Requirements with Reused Software Components: Challenges to Successful Reuse

Achieving Quality Requirements with Reused Software Components: Challenges to Successful Reuse

Achieving Quality Requirements with Reused Software Components: Challenges to Successful Reuse Second International Workshop on Models and Processes for the Evaluation of off-the-shelf Components (MPEC05) 21 May 2005 Donald Firesmith

586 views • 32 slides
Web Components Reuse, reduce, recycle Whats Web Components? Component-based software

Web Components Reuse, reduce, recycle Whats Web Components? Component-based software

Web Components Reuse, reduce, recycle Whats Web Components? Component-based software engineering Four features: Custom Elements Shadow DOM HTML Imports HTML Templates Custom Elements <div> soup Art Custom

912 views • 56 slides
Predicting Regulatory Elements Predicting Regulatory Elements in P. falciparum in P. falciparum

Predicting Regulatory Elements Predicting Regulatory Elements in P. falciparum in P. falciparum

Predicting Regulatory Elements Predicting Regulatory Elements in P. falciparum in P. falciparum Chengyong Yang Erliang Zeng Giri Narasimhan BioInformatics Research Group (BioRG) School of Computer Science Florida International University,

525 views • 31 slides
Clients, Servers, Brokers, and Components Software Design and Architectures Clients, Servers,

Clients, Servers, Brokers, and Components Software Design and Architectures Clients, Servers,

Software Design and Architectures 8 Software Architectures: Clients, Servers, Brokers, and Components Software Design and Architectures Clients, Servers, Brokers, and Components File Transfer Server and Clients examples examplesi roles

810 views • 16 slides
Hardening the Firefox browser Preventing unwanted background traffic to Google, Pocket and hidden

Hardening the Firefox browser Preventing unwanted background traffic to Google, Pocket and hidden

Hardening the Firefox browser Preventing unwanted background traffic to Google, Pocket and hidden telemetry to Mozilla Per Foyer per@foyer.se 10 10 Cryptoparty 201911-R1 Hardening Firefox: Method To harden Firefox we need to: 1. Adjust

470 views • 14 slides
What Make Long Term Contributors Willingness and Opportunity in Open Source Community Minghui

What Make Long Term Contributors Willingness and Opportunity in Open Source Community Minghui

What Make Long Term Contributors Willingness and Opportunity in Open Source Community Minghui Zhou Audris Mockus Peking University Avaya Labs Research zhmh@pku.edu.cn audris@avaya.com Outline Long-term contributors (LTCs) are crucial to

389 views • 16 slides
How do people use tabs? Patrick Dubroy University of Toronto pat@dubroy.com dubroy.com/blog

How do people use tabs? Patrick Dubroy University of Toronto pat@dubroy.com dubroy.com/blog

How do people use tabs? Patrick Dubroy University of Toronto pat@dubroy.com dubroy.com/blog twitter @dubroy (presented at Mozilla Corp. in Mountain View, Jan 27/09) The back story I have a love/hate relationship with tabs. Problems

287 views • 12 slides
Detecting outages with telemetry Alessio Placitelli - @dexterp37 June 16th - Internet

Detecting outages with telemetry Alessio Placitelli - @dexterp37 June 16th - Internet

Detecting outages with telemetry Alessio Placitelli - @dexterp37 June 16th - Internet Measurement Village 2020 Italy, March 11th - 2020 Tales from a mid-pandemic network outage Public 2 ...failure on a foreign network... Source :

591 views • 29 slides
Simplifying Failure-Inducing Input Ralf Hildebrandt and Andreas Zeller ACM SIGSOFT International

Simplifying Failure-Inducing Input Ralf Hildebrandt and Andreas Zeller ACM SIGSOFT International

Andreas Zeller Software Systems Dept. Passau University Simplifying Failure-Inducing Input Ralf Hildebrandt and Andreas Zeller ACM SIGSOFT International Symposium on Software Testing and Analysis (ISSTA) Portland, Oregon, August 23, 2000

673 views • 22 slides
1 A typical bug report contains a lot of informaFon that

1 A typical bug report contains a lot of informaFon that

O"en when debugging, we find ourselves with the problem of having an input that crashes a program but not knowing what aspect of the input is

1.02k views • 65 slides
Python for Informatics Database Handout Download and install FireFox and the SQLite Manager

Python for Informatics Database Handout Download and install FireFox and the SQLite Manager

Python for Informatics Database Handout Download and install FireFox and the SQLite Manager http://www.mozilla.org/enUS/firefox/new/ https://addons.mozilla.org/enUS/firefox/addon/sqlitemanager/ Queries insert into Users (name, email) values

503 views • 3 slides
Certicate Transparency Root Explorer Nikita Korzhitskii Niklas Carlsson Web Public Key

Certicate Transparency Root Explorer Nikita Korzhitskii Niklas Carlsson Web Public Key

Certicate Transparency Root Explorer Nikita Korzhitskii Niklas Carlsson Web Public Key Infrastructure (WebPKI) Root certificates of trusted Certificate Authorities e.g. GlobalSign Root CA, Amazon Root CA, GoDaddy Root CA Root 1 Root 2

347 views • 19 slides

More recommend