CAPEC 650 Upload a Web Shell to a Web Server

Draft Detailed Unknown Risk

Severity High

Description

By exploiting insufficient permissions, it is possible to upload a web shell to a web server in such a way that it can be executed remotely. This shell can have various capabilities, thereby acting as a \'gateway\' to the underlying web server. The shell might execute at the higher permission level of the web server, providing the ability the execute malicious code at elevated levels.

CAPEC 650 Upload a Web Shell to a Web Server

Description

Mitigations

Ensure That The File Permissions In Directories On The Web Server From Which Files Can Be Execute Is Set To The "Least Privilege" Settings, And That Those Directories Contents Is Controlled By An Allowlist.

Make Sure Your Web Server Is Up-To-Date With All Patches To Protect Against Known Vulnerabilities.

Consequences

Security Scopes Affected

Potential Impacts

Relationships

Parent CAPECs

Related ATT&CK Techniques

Web Shell

CAPEC 650 Upload a Web Shell to a Web Server

Description

Mitigations

Ensure That The File Permissions In Directories On The Web Server From Which Files Can Be Execute Is Set To The "Least Privilege" Settings, And That Those Directories Contents Is Controlled By An Allowlist.

Make Sure Your Web Server Is Up-To-Date With All Patches To Protect Against Known Vulnerabilities.

Consequences

Security Scopes Affected

Potential Impacts

Relationships

Parent CAPECs

Related ATT&CK Techniques

Web Shell

Iscriviti alla newsletter