Broken Access Control

Overview

Broken access control is a website security vulnerability that allows unauthorized access to restricted sections or pages. It occurs when access control measures are not properly implemented or enforced.

Description

In website security, access control means limiting the reach of visitors to certain sections or pages based on their needs. However, many content management systems (CMS) lack proper access control mechanisms, leaving administrative panels and login pages accessible to anyone. This opens up websites to potential attacks, as attackers can exploit authorization flaws to gain unauthorized access to sensitive data or functionality. Broken access control can lead to serious risks, such as unauthorized access to user accounts or sensitive files.

How to Prevent ?

To prevent broken access control, it is crucial to develop and configure software with a security-first philosophy. The following preventive measures are recommended: 1. Employ the least privileged concept and assign roles appropriate to specific tasks. 2. Regularly audit servers and websites to monitor user activities. 3. Implement multi-factor authentication for all access points, if possible. 4. Disable access points when not needed to reduce vulnerability. 5. Remove unnecessary services from servers. 6. Distinguish between externally accessible and network-tied applications. 7. Avoid developing, testing, or pushing updates without proper testing on production boxes.

Example Attack Scenarios:

• Unauthorized Account Access:  An attacker can exploit broken access control by modifying parameters in a browser to access any user's account. For example, by modifying the 'acct' parameter in a SQL call, the attacker can access account information without proper verification.

• Forceful Browsing to Administrative Pages:  Attackers can forcefully browse to target URLs that require admin rights for access. This can lead to unauthorized access to administrative panels or sensitive information.