CAPEC 231 Oversized Serialized Data Payloads

Draft Standard Medium Risk

Severity High

Description

An adversary injects oversized serialized data payloads into a parser during data processing to produce adverse effects upon the parser such as exhausting system resources and arbitrary code execution.

Attack Execution Flow

Step 1

Explore

An adversary determines the input data stream that is being processed by an serialized data parser on the victim's side.

Step 2

Experiment

An adversary crafts input data that may have an adverse effect on the operation of the data parser when the data is parsed on the victim's system.

Mitigations

Consequences

Security Scopes Affected

Access Control Authorization Availability Confidentiality Integrity

Potential Impacts

Execute Unauthorized Commands Gain Privileges Read Data Resource Consumption

CAPEC 231 Oversized Serialized Data Payloads

Description

Attack Execution Flow

Step 1

Step 2

Mitigations

Carefully Validate And Sanitize All User-Controllable Serialized Data Prior To Passing It To The Parser Routine. Ensure That The Resultant Data Is Safe To Pass To The Parser.

Perform Validation On Canonical Data.

Pick A Robust Implementation Of The Serialized Data Parser.

Validate Data Against A Valid Schema Or Dtd Prior To Parsing.

Consequences

Security Scopes Affected

Potential Impacts

Indicators

Relationships

Parent CAPECs

Child CAPECs

CAPEC 231 Oversized Serialized Data Payloads

Description

Attack Execution Flow

Step 1

Step 2

Mitigations

Carefully Validate And Sanitize All User-Controllable Serialized Data Prior To Passing It To The Parser Routine. Ensure That The Resultant Data Is Safe To Pass To The Parser.

Perform Validation On Canonical Data.

Pick A Robust Implementation Of The Serialized Data Parser.

Validate Data Against A Valid Schema Or Dtd Prior To Parsing.

Consequences

Security Scopes Affected

Potential Impacts

Indicators

Relationships

Parent CAPECs

Child CAPECs

Iscriviti alla newsletter