PaddyFrog: systematically detecting confused deputy vulnerability in Android applications

Wu, Jiankang; Cui, Tingting; Ban, Tao; Guo, Shanqing; Cui, Lizhen

doi:10.1002/sec.1179

Cited by 17 publications

(6 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Chen et al [41] manually analysed several OAuth providers for Apps and determined how differences between the Apps and browser environments lead to the OAuth vulnerability. Wu et al [1] proposed a detection method for the confused deputy vulnerability in Android applications based on features of An-droidManifest.xml file and Control Flow Graph (CFG). Fang et al [5] studyed an input validation vulnerability in Android inter-component communication.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Vulnerability Detection on Android Apps–Inspired by Case Study on Vulnerability Related With Web Functions

et al. 2020

View full text Add to dashboard Cite

Nowadays, people's lifestyle is more and more dependent on mobile applications (Apps), such as shopping, financial management and surfing the internet. However, developers mainly focus on the implementation of Apps and the improvement of user experience while ignoring security issues. In this paper, we perform the comprehensive study on vulnerabilities caused by misuse of APIs and form a methodology for this type of vulnerability analysis. We investigate the security of three types of Android Apps including finance, shopping and browser which are closely related to human life. And we analyze four vulnerabilities including Improper certificate validation(CWE-295:ICV), WebView bypass certificate validation vulnerability(CVE-2014-5531:WBCVV), WebView remote code execution vulnerability(CVE-2014-1939:WRCEV) and Alibaba Cloud OSS credential disclosure vulnerability(CNVD-2017-09774:ACOCDV). In order to verify the effectiveness of our analysis method in large-scale Apps on the Internet, we propose a novel scalable tool-VulArcher, which is based on heuristic method and used to discover if the above vulnerabilities exist in Apps. We download a total of 6114 of the above three types of samples in App stores, and we use VulArcher to perform the above vulnerability detection for each App. We perform manual verification by randomly selecting 100 samples of each vulnerability. We find that the accuracy rate for ACOCDV can reach 100%, the accuracy rate for WBCVV can reach 95%, and the accuracy rate for the other two vulnerabilities can reach 87%. And one of vulnerabilities detected by VulArcher has been included in

show abstract

Section: Related Workmentioning

confidence: 99%

“…The security issues of Apps are complex and challenging. Related research on Android security has been proposed, including static [1]- [8] and dynamic [9], [10] methods. Wei et al [11] just analyzed Android vulnerabilities which are assosiated with JavaScript.…”

Section: Introductionmentioning

confidence: 99%

Vulnerability Detection on Android Apps–Inspired by Case Study on Vulnerability Related With Web Functions

et al. 2020

View full text Add to dashboard Cite

show abstract

“…The slicing algorithm of APOVD contains two aspects-intra-procedural and inter-procedural slicing, which is based on the program slicer of Indus 7 and has made some improvements on it. Then the generated program slices are used by APOVD to judge the strength of access control in the path from NWP to s. The judgment method is that if there exists a CCJS c in Cs that satisfies one of the following conditions, APOVD considers that there exists adequate access control in the path from NWP to s:…”

Section: Figure 4 Critical Conditional Judgment Statement Searchingmentioning

confidence: 99%

“…A vulnerable and exported component can be visited by the other apps in the same device, which can lead to many types of vulnerabilities, e.g., capability leak [1,2], content provider leakage [3,4], privilege escalation [5,6], confused deputy [7], component hijacking [8,9], intent spoofing [10], etc. But these vulnerabilities can only be exploited locally (the vulnerable app and the malicious app must run in a same device).…”

Section: Related Workmentioning

confidence: 99%

When Android Apps Open Ports to Handle Network Requests: Functionality or Security Vulnerability?

Yue¹,

Zhang²

2017

IJSIA

View full text Add to dashboard Cite

show abstract

“…As with other state-of-the-art static analysis studies for Android apps (such as Bartel et al [23], Geneiatakis et al [24], Woodpecker [25], Chex [26], and Paddyfrog [27]), our detection tool first translates Dalvik bytecode to an intermediate representation and then constructs an interprocedural control-flow graph (ICFG) (it is also known as a super control-flow graph (sCFG)) representing all possible execution paths of an app, for a given .apk file. Because the accuracy of static analysis relies on the controlflow graph, a precise ICFG needs to be constructed in order to improve the precision of static analysis.…”

Section: Preprocessormentioning

confidence: 99%

Large-Scale Analysis of Remote Code Injection Attacks in Android Apps

Choi

Kim

2018

Security and Communication Networks

View full text Add to dashboard Cite

It is pretty well known that insecure code updating procedures for Android allow remote code injection attack. However, other than codes, there are many resources in Android that have to be updated, such as temporary files, images, databases, and configurations (XML and JSON). Security of update procedures for these resources is largely unknown. This paper investigates general conditions for remote code injection attacks on these resources. Using this, we design and implement a static detection tool that automatically identifies apps that meet these conditions. We apply the detection tool to a large dataset comprising 9,054 apps, from three different types of datasets: official market, third-party market, and preinstalled apps. As a result, 97 apps were found to be potentially vulnerable, with 53 confirmed as vulnerable to remote code injection attacks.

show abstract

PaddyFrog: systematically detecting confused deputy vulnerability in Android applications

Cited by 17 publications

References 14 publications

Vulnerability Detection on Android Apps–Inspired by Case Study on Vulnerability Related With Web Functions

Vulnerability Detection on Android Apps–Inspired by Case Study on Vulnerability Related With Web Functions

When Android Apps Open Ports to Handle Network Requests: Functionality or Security Vulnerability?

Large-Scale Analysis of Remote Code Injection Attacks in Android Apps

Contact Info

Product

Resources

About