Detailedlikelihood: Mediumseverity: HighDraft

CAPEC-222iFrame Overlay

Abstraction
Detailed
Status
Draft
Likelihood
Medium
Severity
High

Description

In an iFrame overlay attack the victim is tricked into unknowingly initiating some action in one system while interacting with the UI from seemingly completely different system. Metadata: detailed CAPEC pattern, status draft, likelihood medium, severity high. Underlying weakness: CWE-1021. Related CAPEC pattern: [object Object].

Related weaknesses· 1

CWE-1021

Related attack patterns· 1

CAPEC-103 (ChildOf)

Exploits1

TypeTargetConfidenceTier
WeaknessImproper Restriction of Rendered UI Layers or Framescwe-1021100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Clickjacking
CAPEC
Cross Frame Scripting (XFS)
CAPEC
Flash File Overlay
CAPEC
Flash Injection
CAPEC
Reflected XSS
CAPEC
XSS Targeting Error Pages
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.