Detailedlikelihood: Mediumseverity: HighDraft

CAPEC-11Cause Web Server Misclassification

Abstraction
Detailed
Status
Draft
Likelihood
Medium
Severity
High

Description

An attack of this type exploits a Web server's decision to take action based on filename or file extension. Because different file types are handled by different server processes, misclassification may force the Web server to take unexpected action, or expected actions in an unexpected sequence. This may cause the server to exhaust resources, supply debug or system data to the attacker, or bind an attacker to a remote process.

Related weaknesses· 1

CWE-430

MITRE ATT&CK crosswalk· 1

T1036.006: Masquerading: Space after Filename

Related attack patterns· 1

CAPEC-635 (ChildOf)

Exploits1

TypeTargetConfidenceTier
WeaknessDeployment of Wrong Handlercwe-430100%live

Related to1

TypeTargetConfidenceTier
SubTechniqueSpace after Filenamet1036.006100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
XSS Using MIME Type Mismatch
CAPEC
Alternative Execution Due to Deceptive Filenames
CAPEC
User-Controlled Filename
CWE
Reliance on File Name or Extension of Externally-Supplied File
CAPEC
Using Malicious Files
CAPEC
File Manipulation
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.