Vulnerabilities of LDAP As An Authentication Service

Obimbo, Charlie; Ferriman, Benjamin

doi:10.4236/jis.2011.24015

Cited by 5 publications

(4 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The authors present injection techniques by manipulating the filters used for searching the directory services. Obimbo et al present the risks of using LDAP as an authentication protocol by executing a DoS attack exploiting the TCP threeway handshake required for connection initialization with an LDAP server [4]. More recently, Jeitner et al presented techniques to inject malicious payloads to launch injection attacks on protocols like DNS, LDAP, and Eduroam [6].…”

Section: Ldap Attacksmentioning

confidence: 99%

“…However, over the years, there have been many vulnerabilities in LDAP that enable injection attacks, unauthorized access, and remote code execution capabilities [4]- [6]. As many enterprise applications use LDAP for authentication, attackers are highly motivated to exploit the protocol to gain unauthorized access into the targeted infrastructure.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Deceptive directories and “vulnerable” logs: a honeypot study of the LDAP and log4j attack landscape

Srinivasa

Pedersen

Vasilomanolakis

2022

2022 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)

View full text Add to dashboard Cite

The Lightweight Directory Access Protocol (LDAP) has been widely used to query directory services. It is mainly utilized for reading, writing, and searching directory services like the Active Directory. The vast adoption of LDAP for authentication has entailed several attack attempts like injection attacks and unauthorized access due to thirdparty key storage. Furthermore, recent vulnerabilities discovered in libraries like the Log4j can lead adversaries to obtain unauthorized information from the directory services through pivoting attacks. Moreover, the LDAP can be configured to operate on UDP, motivating adversaries to exploit it for Distributed Reflection Denial of Service attacks (DRDoS). This paper presents a study of attacks on the LDAP by deploying honeypots that simulate multiple profiles that support the LDAP service and correlating the attack datasets obtained from honeypots deployed by the Honeynet Project community. We observe a total of 39, 388 malicious events targeting the honeypots and discover 273 unique attack sources performing pivot attacks in a period of one month.

show abstract

Section: Ldap Attacksmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Deceptive directories and “vulnerable” logs: a honeypot study of the LDAP and log4j attack landscape

Srinivasa

Pedersen

Vasilomanolakis

2022

2022 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)

View full text Add to dashboard Cite

show abstract

“…Vulnerabilities of LDAP as an Authentication Service. [9] LDAP, Authentication service, Denial.of-service, SYN Flooding.…”

Section: A6mentioning

confidence: 99%

Systematic Literature Review on the LDAP Protocol As a Centralized Mechanism for the Authentication of Users in Multiple Systems

Cueva-Hurtado¹,

Figueroa-Diaz²,

Aguilar-Soto³

et al. 2018

KEG

View full text Add to dashboard Cite

show abstract

“…Several methods [5][6][7][8][9][10][11][12] have been proposed to prevent the SQL injection attack to the web-based application. These include adding some parameterized strings to the SQL commands, using a virtual database connectivity drive or extracting the basic structure of a SQL statement, creating the unpredictable instances of the language, and combining the static application code analysis with runtime validation.…”

Section: Introductionmentioning

confidence: 99%

Securely Web-based Application for Construction Material Testing

Nontarak¹,

Leelawat²

2012

IJCA

View full text Add to dashboard Cite

The main aim of this paper was to develop and evaluate securely web-based application for construction material testing using object-oriented technology and parameterized queries for SQL command queries. The SQL queries for the web application of construction material testing were modified by adjusting their codes which included connection strings, authorization bypass and execute commands. Detection of SQL injection vulnerability was conducted by expertise and two automatic web vulnerability scanning tools. It was found that the parameterized queries could minimize the SQL injection flaws of the web application significantly. General Terms

show abstract

Vulnerabilities of LDAP As An Authentication Service

Cited by 5 publications

References 6 publications

Deceptive directories and “vulnerable” logs: a honeypot study of the LDAP and log4j attack landscape

Deceptive directories and “vulnerable” logs: a honeypot study of the LDAP and log4j attack landscape

Systematic Literature Review on the LDAP Protocol As a Centralized Mechanism for the Authentication of Users in Multiple Systems

Securely Web-based Application for Construction Material Testing

Contact Info

Product

Resources

About