Detailedlikelihood: Lowseverity: Very HighDraft

CAPEC-237Escaping a Sandbox by Calling Code in Another Language

Abstraction
Detailed
Status
Draft
Likelihood
Low
Severity
Very High

Description

The attacker may submit malicious code of another language to obtain access to privileges that were not intentionally exposed by the sandbox, thus escaping the sandbox. For instance, Java code cannot perform unsafe operations, such as modifying arbitrary memory locations, due to restrictions placed on it by the Byte code Verifier and the JVM. If allowed, Java code can call directly into native C code, which may perform unsafe operations, such as call system calls and modify arbitrary memory locations on their behalf. To provide isolation, Java does not grant untrusted code with unmediated access to native C code. Instead, the sandboxed code is typically allowed to call some subset of the pre-existing native code that is part of standard libraries.

Related weaknesses· 1

CWE-693

Related attack patterns· 1

CAPEC-480 (ChildOf)

Exploits1

TypeTargetConfidenceTier
WeaknessProtection Mechanism Failurecwe-693100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Escaping Virtualization
CAPEC
Subvert Code-signing Facilities
CAPEC
Inclusion of Code in Existing Process
CAPEC
Remote Code Inclusion
CAPEC
Buffer Overflow in an API Call
CAPEC
Code Injection
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.