Communication-Traffic-Assisted Mining and Exploitation of Buffer Overflow Vulnerabilities in ADASs-Reference-Cited by-同舟云学术

Communication-Traffic-Assisted Mining and Exploitation of Buffer Overflow Vulnerabilities in ADASs

Published:2023-05-18 Issue:5 Volume:15 Page:185
ISSN:1999-5903
Container-title:Future Internet
language:en
Short-container-title:Future Internet

Author:

Li Yufeng¹²,Liu Mengxiao¹,Cao Chenhong¹²,Li Jiangtao¹²^ORCID

Affiliation:

1. School of Computer Engineering and Science, Shanghai University, Shanghai 200444, China

2. Purple Mountain Laboratories, Nanjing 211100, China

Abstract

Advanced Driver Assistance Systems (ADASs) are crucial components of intelligent vehicles, equipped with a vast code base. To enhance the security of ADASs, it is essential to mine their vulnerabilities and corresponding exploitation methods. However, mining buffer overflow (BOF) vulnerabilities in ADASs can be challenging since their code and data are not publicly available. In this study, we observed that ADAS devices commonly utilize unencrypted protocols for module communication, providing us with an opportunity to locate input stream and buffer data operations more efficiently. Based on the above observation, we proposed a communication-traffic-assisted ADAS BOF vulnerability mining and exploitation method. Our method includes firmware extraction, a firmware and system analysis, the locating of risk points with communication traffic, validation, and exploitation. To demonstrate the effectiveness of our proposed method, we applied our method to several commercial ADAS devices and successfully mined BOF vulnerabilities. By exploiting these vulnerabilities, we executed the corresponding commands and mapped the attack to the physical world, showing the severity of these vulnerabilities.

Funder

Henan Science and Technology Major Project

Shanghai Automotive Industry Science and Technology Development Foundation, SongShan Labtory Pre-Research Project

Shanghai Science and Technology Innovation Action Plan

National Science Foundation of China

Shanghai Sailing Program

Publisher

MDPI AG

Subject

Computer Networks and Communications

Link

https://www.mdpi.com/1999-5903/15/5/185/pdf

Reference19 articles.

1. Ben, N., Yisroel, M., Dudi, N., Raz, B.-N., Oleg, D., and Yuval, E. (2020, January 9–13). Phantom of the adas: Securing advanced driver-assistance systems from split-second phantom attacks. Proceedings of the 2020 ACM SIGSAC Conference on Computer and Communications Security, Online.

2. Cao, C.Y., Xiao, X.C., and Cyr, C.B. (2019, January 11–15). Adversarial sensor attack on lidar-based perception in autonomous driving. Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security, London, UK.

3. Wan, Z., Shen, J., Chuang, J., Xia, X., Garcia, J., Ma, J., and Chen, Q.A. (2022). Too afraid to drive: Systematic discovery of semantic DoS vulnerability in autonomous driving planning under physical-world attacks. arXiv.

4. (2023, March 31). Tencent Keen Lab: Mercedes-Benz Automotive Information Security Research Overview Report. Available online: https://keenlab.tencent.com/zh/2021/05/12/Tencent-Security-Keen-Lab-Experimental-Security-Assessment-on-Mercedes-Benz-Cars/.

5. Weinmann, R.-P., and Schmotzle, B. (2023, March 31). TBONE–A Zero-Click Exploit for Tesla MCUs. White Paper, ComSecuris. Available online: https://www.google.com.hk/url?sa=t&rct=j&q=&esrc=s&source=web&cd=&cad=rja&uact=8&ved=2ahUKEwipr_OJoID_AhXPgVYBHYnEDzcQFnoECBUQAQ&url=https%3A%2F%2Fkunnamon.io%2Ftbone%2Ftbone-v1.0-redacted.pdf&usg=AOvVaw3D8rptrw4h1YJ0z7xKOtxI.

Cited by 3 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Securing the Future: A Comprehensive Review of Security Challenges and Solutions in Advanced Driver Assistance Systems;IEEE Access;2024

2. Research and Design of Active Security Protection Strategy for Charging Piles Based on Vulnerability Mining;Proceedings of the 2023 3rd International Conference on Big Data, Artificial Intelligence and Risk Management;2023-11-24

3. Fine-Grained Modeling of ROP Vulnerability Exploitation Process under Stack Overflow Based on Petri Nets;Electronics;2023-11-22