Standardseverity: MediumDraft

CAPEC-183IMAP/SMTP Command Injection

Abstraction
Standard
Status
Draft
Severity
Medium

Description

An adversary exploits weaknesses in input validation on web-mail servers to execute commands on the IMAP/SMTP server. Web-mail servers often sit between the Internet and the IMAP or SMTP mail server. User requests are received by the web-mail servers which then query the back-end mail server for the requested information and return this response to the user. In an IMAP/SMTP command injection attack, mail-server commands are embedded in parts of the request sent to the web-mail server. If the web-mail server fails to adequately sanitize these requests, these commands are then sent to the back-end mail server when it is queried by the web-mail server, where the commands are then executed. This attack can be especially dangerous since administrators may assume that the back-end server is protected against direct Internet access and therefore may not secure it adequately against the execution of malicious commands.

Related weaknesses· 1

CWE-77

Related attack patterns· 1

CAPEC-248 (ChildOf)

Exploits1

TypeTargetConfidenceTier
WeaknessImproper Neutralization of Special Elements used in a Command ('Command Injection')cwe-77100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Email Injection
CAPEC
Command Injection
CAPEC
Using Meta-characters in E-mail Headers to Inject Malicious Payloads
CAPEC
SQL Injection
CAPEC
XQuery Injection
CAPEC
MIME Conversion
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.