CAPEC 35 Leverage Executable Code in Non-Executable Files

Draft Detailed High Risk

Severity Very High

Description

An attack of this type exploits a system's trust in configuration and resource files. When the executable loads the resource (such as an image file or configuration file) the attacker has modified the file to either execute malicious code directly or manipulate the target process (e.g. application server) to execute based on the malicious configuration parameters. Since systems are increasingly interrelated mashing up resources from local and remote sources the possibility of this attack occurring is high.

Mitigations

Design: Run Server Interfaces With A Non-Root Account And/Or Utilize Chroot Jails Or Other Configuration Techniques To Constrain Privileges Even If Attacker Gains Some Limited Access To Commands.

Design: Enforce Principle Of Least Privilege

Implementation: Perform Testing Such As Pen-Testing And Vulnerability Scanning To Identify Directories, Programs, And Interfaces That Grant Direct Access To Executables.

CAPEC 35 Leverage Executable Code in Non-Executable Files

Description

Mitigations

Design: Run Server Interfaces With A Non-Root Account And/Or Utilize Chroot Jails Or Other Configuration Techniques To Constrain Privileges Even If Attacker Gains Some Limited Access To Commands.

Design: Enforce Principle Of Least Privilege

Implementation: Perform Testing Such As Pen-Testing And Vulnerability Scanning To Identify Directories, Programs, And Interfaces That Grant Direct Access To Executables.

Implementation: Implement Host Integrity Monitoring To Detect Any Unwanted Altering Of Configuration Files.

Implementation: Ensure That Files That Are Not Required To Execute, Such As Configuration Files, Are Not Over-Privileged, I.E. Not Allowed To Execute.

Consequences

Security Scopes Affected

Potential Impacts

Relationships

Parent CAPECs

Related CAPECs

Related ATT&CK Techniques

HTML Smuggling

Embedded Payloads

Resource Forking

Resources Required

CAPEC 35 Leverage Executable Code in Non-Executable Files

Description

Mitigations

Design: Run Server Interfaces With A Non-Root Account And/Or Utilize Chroot Jails Or Other Configuration Techniques To Constrain Privileges Even If Attacker Gains Some Limited Access To Commands.

Design: Enforce Principle Of Least Privilege

Implementation: Perform Testing Such As Pen-Testing And Vulnerability Scanning To Identify Directories, Programs, And Interfaces That Grant Direct Access To Executables.

Implementation: Implement Host Integrity Monitoring To Detect Any Unwanted Altering Of Configuration Files.

Implementation: Ensure That Files That Are Not Required To Execute, Such As Configuration Files, Are Not Over-Privileged, I.E. Not Allowed To Execute.

Consequences

Security Scopes Affected

Potential Impacts

Relationships

Parent CAPECs

Related CAPECs

Related ATT&CK Techniques

HTML Smuggling

Embedded Payloads

Resource Forking

Resources Required

Iscriviti alla newsletter