LEFT SIDEBAR AD

Hidden in mobile, Best for skyscrapers.

Insecure Deserialization :-

4 years ago 135
BOOK THIS SPACE FOR AD
ARTICLE AD

Parshwa Bhavsar

Insecure Deserialization :-

Hello all ,

This is my another write up for last bug that I have found.

Bug name :- Insecure Deserialization

Description :-

In computer science, an object is a data structure; in other

words, a way to structure data. Two key concepts make it

easier to understand:

• The process of serialization is converting objects to byte

strings.

• The process of deserialization is converting byte strings

to objects.

If a website use a PHP forum that uses PHP object serialization
to save a “super” cookie, containing the user’s user ID, role,

password hash, and other state:

Example,

Steps to reproduce :-

a:4:{i:0;i:132;i:1;s:7:”user-1”;i:2;s4:”user”;

i3;s32:”b6a8b3bea87fe0e05022f8f3c88bc960”;}

An attacker changes the serialized object to give themselves

Another user privileges:

a:4:{i:0;i:1;i:1;s:5:”user-2”;i:2;s:5:”user”;

;s32:”b6a8b3bea87fe0e05022f8f3c88bc960”;}

Impact :-

If an attacker is able to deserialize an object successfully, then

modify the object to give himself an admin role, they can serialize

it again. This set of actions could compromise the whole web

application.

Mitigations :-

The best way to protect your web application from this type of risk is not to

accept serialized objects from untrusted sources.

• Implementing integrity checks such as digital signatures on any

serialized objects to prevent hostile object creation or data tampering.

• Enforcing strict type constraints during deserialization before object

creation as the code typically expects a definable set of classes.

• Bypasses to this technique have been demonstrated, so reliance

solely on this is not advisable.

• Isolating and running code that deserializes in low privilege

environments when possible.

• Logging deserialization exceptions and failures, such as where the

incoming type is not the expected type, or the deserialization throws

exceptions.

• Restricting or monitoring incoming and outgoing network connectivity

from containers or servers that deserialize.

• Monitoring deserialization, alerting if a user deserializes constantly.

Thank you for your time ☺

More write up will come soon

Read Entire Article
  3. Insecure Deserialization :-

Related

Command Injection: Mastering Exploitation Techniques with a Comprehensive Cheatsheet

Command Injection: Mastering Exploitation Techniques with a Comprehensive Cheatsheet

$3 Billion Crypto Exchange XT Allegedly Hacked

$3 Billion Crypto Exchange XT Allegedly Hacked

Hackers Steal $17 Million from Uganda’s Central Bank

Hackers Steal $17 Million from Uganda’s Central Bank

Small Bugs, Big Bounties: A Hacker’s Guide to Quick Wins

Small Bugs, Big Bounties: A Hacker’s Guide to Quick Wins

Critical Vulnerability Discovered in Zabbix Network Monitoring Tool

Critical Vulnerability Discovered in Zabbix Network Monitoring Tool

All UPI IDs in India have Predictable Patterns that allow the disclosure of mail IDs!

All UPI IDs in India have Predictable Patterns that allow the disclosure of mail IDs!

Trending

1. The Sabarmati Report
2. Amitabh Bachchan
3. Hunter Biden
4. Yeontan
5. Odisha Police Constable Admit Card
6. Sundar Pichai
7. Avadh Ojha
8. Skoda Kylaq
9. Shalini Passi
10. Suraksha Diagnostic IPO GMP

Popular

1-click RCE in Electron Applications

1-click RCE in Electron Applications

Install waybackurls on Kali Linux

Install waybackurls on Kali Linux

Microsoft Office Professional Plus 2019 (x64 & x86) Multilingual + Pre-Activated

Microsoft Office Professional Plus 2019 (x64 & x86) Multilingual + Pre-Activated

Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys

Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys

Install DalFox on Kali Linux

Install DalFox on Kali Linux

Adobe Master Collection CC 2022 v25.08.2022 (x64) Multilingual Pre-Activated

Adobe Master Collection CC 2022 v25.08.2022 (x64) Multilingual Pre-Activated

Autodesk Revit 2023 R1 Build 23.0.11.19 (x64) Multilingual + Crack

Autodesk Revit 2023 R1 Build 23.0.11.19 (x64) Multilingual + Crack

Maxon CINEMA 4D Studio S22.123 (x64) Multilingual + Crack

Maxon CINEMA 4D Studio S22.123 (x64) Multilingual + Crack

‘We are not motivated by profits’ – Open Bug Bounty maintainers on finding a niche in the crowdsourced AppSec market

‘We are not motivated by profits’ – Open Bug Bounty maintainers on finding a niche in the crowdsourced AppSec market

Just Gopher It: Escalating a Blind SSRF to RCE for $15k

Just Gopher It: Escalating a Blind SSRF to RCE for $15k

BOOK THIS SPACE FOR AD
RIGHT SIDEBAR BOTTOM AD
Bengali (Bangladesh) Bengali (Bangladesh) · English (United States) English (United States) ·
About Us · Terms & Condition · Contact Us
© Security Alert 2024. All rights are reserved