Common web application threats

Threat

Measures

SQL Injection : Appends existing SQL of the application , and generate unexpected queries.

Avoid dynamically generated queries. ( use parameterised queries ). Always use properly tested libraries to access DB.

OS Command Injection : Change applications OS command executions

Implement strict input validation.

XSS – Cross-Site-Scripting : Inject javascript or any other executable.

Dont allow <script> tags as input

Classic Buffer Overflow : Application allows copying of input buffers larger than output buffer.

Always check destination buffer is large enough to accommodate the source buffer.

Accessing restricted paths/files : Attacker constructs a file/directory path that is not intended to access.

Store sensitive files outside web-root and and secure them by granting permission only to authorized parties.

Missing authentication : Lack of sufficient authentication for critical functions.

Identify communication channels and authenticate for all. Identify and implement authorization for user groups . Avoid custom authentications or use single , tested authentication and authorizations. Identify role based authentication for resources always.

Missing/Incorrect encryption : sensitive data are transmitted without encryption.

Identify what data needs to be encrypted and use strong , well known encryption algorithms.

Hard coded credentials : Forgotten or deliberatively added credentials inside application code.

Protect credentials with strict ACL, store credential data in restricted access files.

Uploading dangerous files : Risk of processing dangerous files or downloaded by other users.

Store user uploaded files separately where minimum risk is taken. Use a whitelist of acceptable file list.

 

Reference : http://www.tdktech.com/tech-talks/most-common-web-application-vulnerabilities

Advertisements

About buminda

buminda.com
This entry was posted in web security. Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s