When an attacker sends a crafted packet over the network, they can inject any data they want. This can be used to cause a denial-of-service (DoS) attack, inject malicious code, or exfiltrate data.
To be certain of the integrity of the data sent to the server, FreshService Windows Agent 2.11.0 and FreshService macOS Agent 4.2.0 and FreshService Linux Agent 3.3.0 implement integrity checking.
Broken integrity check results in the following:
Broken integrity checking can be exploited via a client-side DoS attack.
There are 3 ways to exploit this issue:
Constant connection attempts to the update server.
A large amount of updates queued for download.
A large amount of updates downloaded.
In the first case, the update server will receive a high volume of requests that exceed the rate at which it can handle them. In the second case, the server will receive a high volume of updates, leading to a high load on the server. In the third case, a high volume of updates will be downloaded, which will lead to a high load on the server.
Constant connection attempts to the update server
The attacker sends large numbers of packets to the update server connection.
Timeline
Published on: 09/12/2022 21:15:00 UTC
Last modified on: 09/15/2022 04:12:00 UTC