![Black Hat Briefings, USA 2007 [Video] Presentations from the security conference. artwork](https://is2-ssl.mzstatic.com/image/thumb/Podcasts/v4/72/67/63/726763f4-d563-024c-5880-49dcaabf2fb4/mza_7096284172862428647.jpg/100x100bb.jpg)
Jeff Morin: Type Conversion Errors: How a Little Data Type Can Do a Whole Lot of Damage
Black Hat Briefings, USA 2007 [Video] Presentations from the security conference.
English - January 09, 2006 23:10 - 10 minutes - 18.8 KB Video - ★★★★★ - 1 ratingTechnology News Tech News blackhat usa 2006 black hat vegas blackhat vegas hacking convention computer security speeches presentations spoken word video Homepage Download Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
In the realm of application testing, one of the major, but most often overlooked vulnerabilities, is that of type conversion errors. These errors result from input variable values being used throughout the many areas and codebases that make up the application, and in doing so, are potentially treated as different data types throughout the processing. The application functions correctly and without issue because the values of the input variable are anticipated, even though they are treated in different areas as different data types. The issue arises then when a value is input into one of these variables that is crafted in such a way as to be successfully manipulated by some data types, while failing others, resulting in the application behaving in unanticipated and potentially dangerous ways. These vulnerabilities are much more difficult to identify than simple error-based SQL injection or XSS as they don't readily display success or failure, rather can manifest themselves in other areas or at a later time. This also makes them very dangerous in that the application behaves in completely unanticipated ways, potentially resulting in circumvented authentication and authorization, Denial of Service, elevated privileges, etc.
This talk explores the security pitfalls that result from type conversion errors, how to identify them, and proposes some solutions for identification going forward.