FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W2730150466> ?p ?o ?g. }

• W2730150466 startingPage "32" @default.
• W2730150466 abstract "In recent years, multiple vulnerabilities exploiting the serialisation APIs of various programming languages, including Java, have been discovered. These vulnerabilities can be used to devise in- jection attacks, exploiting the presence of dynamic programming language features like reflection or dynamic proxies. In this paper, we investigate a new type of serialisation-related vulnerabilit- ies for Java that exploit the topology of object graphs constructed from classes of the standard library in a way that deserialisation leads to resource exhaustion, facilitating denial of service attacks. We analyse three such vulnerabilities that can be exploited to exhaust stack memory, heap memory and CPU time. We discuss the language and library design features that enable these vulnerabilities, and investigate whether these vulnerabilities can be ported to C#, Java- Script and Ruby. We present two case studies that demonstrate how the vulnerabilities can be used in attacks on two widely used servers, Jenkins deployed on Tomcat and JBoss. Finally, we propose a mitigation strategy based on contract injection." @default.
• W2730150466 created "2017-07-14" @default.
• W2730150466 creator A5010928435 @default.
• W2730150466 creator A5025562598 @default.
• W2730150466 creator A5028189101 @default.
• W2730150466 creator A5057086547 @default.
• W2730150466 creator A5075091948 @default.
• W2730150466 date "2017-05-13" @default.
• W2730150466 modified "2023-09-28" @default.
• W2730150466 title "Evil Pickles: DoS Attacks Based on Object-Graph Engineering" @default.
• W2730150466 cites W125251596 @default.
• W2730150466 cites W1460196902 @default.
• W2730150466 cites W1563402047 @default.
• W2730150466 cites W1610570299 @default.
• W2730150466 cites W1649645444 @default.
• W2730150466 cites W171626818 @default.
• W2730150466 cites W1967446222 @default.
• W2730150466 cites W1981173279 @default.
• W2730150466 cites W1982820954 @default.
• W2730150466 cites W2007685556 @default.
• W2730150466 cites W2013901208 @default.
• W2730150466 cites W2015937909 @default.
• W2730150466 cites W2052363833 @default.
• W2730150466 cites W2076663662 @default.
• W2730150466 cites W2086802227 @default.
• W2730150466 cites W2089522440 @default.
• W2730150466 cites W2095219028 @default.
• W2730150466 cites W2114054012 @default.
• W2730150466 cites W2135032959 @default.
• W2730150466 cites W2158591033 @default.
• W2730150466 cites W2164387399 @default.
• W2730150466 cites W2166091242 @default.
• W2730150466 cites W2292276745 @default.
• W2730150466 cites W2295517818 @default.
• W2730150466 cites W2501098765 @default.
• W2730150466 cites W2534728012 @default.
• W2730150466 doi "https://doi.org/10.4230/lipics.ecoop.2017.10" @default.
• W2730150466 hasPublicationYear "2017" @default.
• W2730150466 type Work @default.
• W2730150466 sameAs 2730150466 @default.
• W2730150466 citedByCount "6" @default.
• W2730150466 countsByYear W27301504662018 @default.
• W2730150466 countsByYear W27301504662019 @default.
• W2730150466 countsByYear W27301504662020 @default.
• W2730150466 countsByYear W27301504662022 @default.
• W2730150466 crossrefType "proceedings-article" @default.
• W2730150466 hasAuthorship W2730150466A5010928435 @default.
• W2730150466 hasAuthorship W2730150466A5025562598 @default.
• W2730150466 hasAuthorship W2730150466A5028189101 @default.
• W2730150466 hasAuthorship W2730150466A5057086547 @default.
• W2730150466 hasAuthorship W2730150466A5075091948 @default.
• W2730150466 hasConcept C102379954 @default.
• W2730150466 hasConcept C106251023 @default.
• W2730150466 hasConcept C110875604 @default.
• W2730150466 hasConcept C111919701 @default.
• W2730150466 hasConcept C134757568 @default.
• W2730150466 hasConcept C165696696 @default.
• W2730150466 hasConcept C199360897 @default.
• W2730150466 hasConcept C2777253204 @default.
• W2730150466 hasConcept C2777904410 @default.
• W2730150466 hasConcept C38652104 @default.
• W2730150466 hasConcept C38822068 @default.
• W2730150466 hasConcept C41008148 @default.
• W2730150466 hasConcept C548217200 @default.
• W2730150466 hasConcept C93996380 @default.
• W2730150466 hasConceptScore W2730150466C102379954 @default.
• W2730150466 hasConceptScore W2730150466C106251023 @default.
• W2730150466 hasConceptScore W2730150466C110875604 @default.
• W2730150466 hasConceptScore W2730150466C111919701 @default.
• W2730150466 hasConceptScore W2730150466C134757568 @default.
• W2730150466 hasConceptScore W2730150466C165696696 @default.
• W2730150466 hasConceptScore W2730150466C199360897 @default.
• W2730150466 hasConceptScore W2730150466C2777253204 @default.
• W2730150466 hasConceptScore W2730150466C2777904410 @default.
• W2730150466 hasConceptScore W2730150466C38652104 @default.
• W2730150466 hasConceptScore W2730150466C38822068 @default.
• W2730150466 hasConceptScore W2730150466C41008148 @default.
• W2730150466 hasConceptScore W2730150466C548217200 @default.
• W2730150466 hasConceptScore W2730150466C93996380 @default.
• W2730150466 hasLocation W27301504661 @default.
• W2730150466 hasOpenAccess W2730150466 @default.
• W2730150466 hasPrimaryLocation W27301504661 @default.
• W2730150466 hasRelatedWork W1563402047 @default.
• W2730150466 hasRelatedWork W1971111941 @default.
• W2730150466 hasRelatedWork W1982042804 @default.
• W2730150466 hasRelatedWork W2014590767 @default.
• W2730150466 hasRelatedWork W2086631206 @default.
• W2730150466 hasRelatedWork W2126709396 @default.
• W2730150466 hasRelatedWork W2128325590 @default.
• W2730150466 hasRelatedWork W2155735696 @default.
• W2730150466 hasRelatedWork W2399762640 @default.
• W2730150466 hasRelatedWork W2523390657 @default.
• W2730150466 hasRelatedWork W2532471378 @default.
• W2730150466 hasRelatedWork W2534064092 @default.
• W2730150466 hasRelatedWork W2547817202 @default.
• W2730150466 hasRelatedWork W2560483663 @default.
• W2730150466 hasRelatedWork W2612804666 @default.
• W2730150466 hasRelatedWork W2628270564 @default.
• W2730150466 hasRelatedWork W2725320561 @default.

• next