Abstract:Web services have brought great convenience to our daily lives. Meanwhile, they are vulnerable to Denial-of-Service (DoS) attacks. DoS attacks launched via vulnerabilities in the services can cause great harm. The vulnerabilities in protocol implementations are especially important because they are the keystones of web services. One vulnerable protocol implementation can affect all the web services built on top of it. Compared to the vulnerabilities that cause the target service to crash, resource exhaustion vulnerabilities are equally if not more important. This is because such vulnerabilities can deplete the system resources, leading to the unavailability of not only the vulnerable service but also other services running on the same machine. Despite the significance of this type of vulnerability, there has been limited research in this area. In this paper, we propose Medusa, a dynamic analysis framework to detect memory exhaustion vulnerabilities in protocol implementations, which are the most common type of resource exhaustion vulnerabilities. Medusa works in two phases: exploration phase and verification. In the exploration phase, a protocol property graph (PPG) is constructed to embed the states with relevant properties including memory consumption information. In the verification phase, the PPG is used to simulate DoS attacks to verify the vulnerabilities. We implemented Medusa and evaluated its performance on 21 implementations of five protocols. The results demonstrate that Medusa outperforms the state-of-the-art techniques by discovering overall 127× maximum memory consumption. Lastly, Medusa has discovered six 0-day vulnerabilities in six protocol implementations for three protocols. Particularly, one of the vulnerabilities was found in Eclipse Mosquitto, which can affect thousands of services and it has been assigned with a CVE ID.

Medusa: Unveil Memory Exhaustion DoS Vulnerabilities in Protocol Implementations

DDoSMiner: an Automated Framework for DDoS Attack Characterization and Vulnerability Mining.

Analysis And Comparison Of The Network Security Protocol With Dos/Ddos Attack Resistance Performance

Memory DoS Attacks in Multi-tenant Clouds: Severity and Mitigation

Coda: Runtime Detection of Application-Layer CPU-Exhaustion DoS Attacks in Containers

Exception triggered DoS attacks on wireless networks

Towards Risk Evaluation of Denial-Of-Service Vulnerabilities in Security Protocols

Mitigating and Analysis of Memory Usage Attack in IoE System

Medusa Attack: Exploring Security Hazards of In-App QR Code Scanning

An Economical Model for the Risk Evaluation of Dos Vulnerabilities in Cryptography Protocols

Finding Security Vulnerabilities in IoT Cryptographic Protocol and Concurrent Implementations

HDiff: A Semi-automatic Framework for Discovering Semantic Gap Attack in HTTP Implementations

Secure Stabilization of Networked Lur'e Systems Suffering From DoS Attacks: A Resilient Memory-Based Event-Trigger Mechanism

MemLock

Preventing Drive-by Download Via Inter-Module Communication Monitoring

Slow Subscribers: a novel IoT-MQTT based denial of service attack

Understanding Ethereum Mempool Security under Asymmetric DoS by Symbolized Stateful Fuzzing

Characterizing the Impacts of Application Layer DDoS Attacks

Design and Implementation of OSPF Vulnerability Analysis and Detection System

Poseidon: Mitigating Volumetric DDoS Attacks with Programmable Switches