AttackFlow Findings Dictionary

Finding A Way To Try AttackFlow Enterprise Edition?

If so, click to download 15 days full version for free!

Executable Injection

The attacker can force the application to run insecure executable on the target operating system which leads to information disclosure or total system ownage

Severity

Medium

Fix Cost

Low

Trust Level

Medium

Rarely applications have the requirement of interacting with the Operating System they run on. In order to cater this requirement, programming languages provide APIs for OS communications.

One way of executing an outside executable is presented below;

                            
AppDomain aDomain = AppDomain.CreateDomain("aDomain");
var ret = aDomain.ExecuteAssembly(pathToExecutable);
                 
            

The code above dynamically creates a different domain than the current one then loads and executes an outside executable (might be DLL or exe with entry points). If there’s any chance that pathToExecutable is untrusted, loaded from .config configuration files, database or directly from user input, then loading a malicious executable and running it is inevitable.

Finding A Way To Purchase AttackFlow Enterprise Edition?

If so, click to buy now for yearly subscriptions!