Vulnerability of Remote Control Apps based on Attack Scenario

Main Article Content

YongJun Park
Seon-a Lee
Wonhyung Park

Keywords

Vulnerability, Remote Control, Cyber-attack

Abstract

Remote control applications are becoming popular as there are various mobile devices that can claontrol
a wide array of applications remotely such as Smart TVs and PCs. Our study focused on remote
control apps that connect to the PC. With these apps, users can remotely connect to their PCs and
control many functionalities such as moving the cursor using a fingertip on user screen, web browsing,
typing, looking up directories/files, and so forth. Unfortunately, despite their success in the
market, they still face many security problems. Based on STRIDE threat model, the emphasis on
this paper is on spoofing, tampering, authentication, and control messages on the network layer. By
analyzing protocols and packets via Wireshark, security properties were studied in the remote control
apps, whose vulnerbilities were then discovered. Based on our findings and further analysis, we
implemented an attack tool that aims to create a zombie network by exploiting vulnerabilities and
security threats to compromise server PCs.