File Hijacking Vulnerability: The Elephant in the Room
Chendong Yu
Network and Distributed System Security (NDSS) Symposium 2024 · Day 2 · Software Security
In this NDSS Symposium talk, Chendong Yu presented "File Hijacking Vulnerability: The Elephant in the Room," a comprehensive analysis of **File Hijacking Vulnerabilities (FHVulns)**. FHVulns represent a critical class of security flaws where an attacker can breach security boundaries by manipulating file content or file paths, leading to severe consequences such as **arbitrary code execution**, **privilege escalation**, and **data loss**. Despite their prevalence and impact, a systematic understanding of FHVulns has been largely overlooked by existing research and detection techniques.