All you KDE are belong to US--C.A.S.

Searching_ _ _ · May 17, 2010

Cross Application Scripting (CAS) is a vulnerability affecting desktop applications that don’t check input in an exhaustive way. CAS allows an attacker to insert some code to edit the contents of certain desktop application. This way it is possible to extract sensitive data from inside of the users’ systems. Attacks for CAS vulnerabilities may have very dire consequences as they could imply a complete compromise of the targets – independent from their operating system or platform.
Click to expand...

All You KDE Are Belong to Us

CloneRanger · May 17, 2010

Thanks for posting, probably won't be long before we see the baddies trying this Havn't had time to watch the video yet, but will do

As opposed to XSS, CAS may result in FULL code execution on the victim machine. The screen-shot above shows an attacker, connecting to a victim machine that was exploited using CAS techniques to open a bind shell on port 31337.
Click to expand...

http://www.backtrack-linux.org/backtrack/cross-application-scripting-all-you-kde-are-belong-to-us

If Cross Application Scripting is the application equivalent for what XSS is for web applications, then CARF (Cross Application Request Forgery) is the equivalent for CSRF in desktop applications.

In the case of CARF the concept of "link" and "protocol" inherited from the web has been extremely extended being that it involves components of the graphical environment and, in some cases, directly of the operating system.

Exploiting vulnerabilities amendable to CSRF requires a certain interaction from the user.

This problem in many cases isn't particularly limiting for the fact that the user can be easily led to execute certain actions if the graphical interface is altered the right way. In fact, many misleading changes in the look of applications can be obtained with the use of CAS: a new kind of "phishing", whose dangerousness is amplified by a lack of tools to detect this kind of attacks outside of websites or emails.

In opposition to XSS techniques, that can manipulate and later execute commands on the users' browser side, with CAS it is possible to talk directly to the operating system and not only its graphical interface.
Click to expand...

http://en.wikipedia.org/wiki/Cross_Application_Scripting

Gullible Jones · May 18, 2010

Interesting and very nasty. Could sandboxing via SELinux or AppArmor theoretically protect against this? What about Chromium's policy sandbox?

Log in or Sign up

All you KDE are belong to US--C.A.S.

Searching_ _ _ Registered Member

CloneRanger Registered Member

Gullible Jones Guest

Log in or Sign up

All you KDE are belong to US--C.A.S.

Searching_ _ _ Registered Member

CloneRanger Registered Member

Gullible Jones Guest

Useful Searches