Standardlikelihood: Highseverity: HighDraft

CAPEC-267Leverage Alternate Encoding

Abstraction
Standard
Status
Draft
Likelihood
High
Severity
High

Description

An adversary leverages the possibility to encode potentially harmful input or content used by applications such that the applications are ineffective at validating this encoding standard. Metadata: standard CAPEC pattern, status draft, likelihood high, severity high. Underlying weaknesses: CWE-173, CWE-172, CWE-180, CWE-181, CWE-73 (and 4 more). Mapped ATT&CK technique: [object Object]. Related CAPEC pattern: [object Object].

Related weaknesses· 9

CWE-173CWE-172CWE-180CWE-181CWE-73CWE-74CWE-20CWE-697CWE-692

MITRE ATT&CK crosswalk· 1

T1027: Obfuscated Files or Information

Related attack patterns· 1

CAPEC-153 (ChildOf)

Exploits9

TypeTargetConfidenceTier
WeaknessImproper Input Validationcwe-20100%live
WeaknessIncorrect Behavior Order: Validate Before Filtercwe-181100%live
WeaknessIncorrect Comparisoncwe-697100%live
WeaknessIncorrect Behavior Order: Validate Before Canonicalizecwe-180100%live
WeaknessImproper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')cwe-74100%live
WeaknessIncomplete Denylist to Cross-Site Scriptingcwe-692100%live
WeaknessExternal Control of File Name or Pathcwe-73100%live
WeaknessImproper Handling of Alternate Encodingcwe-173100%live
WeaknessEncoding Errorcwe-172100%live

Related to1

TypeTargetConfidenceTier
TechniqueObfuscated Files or Informationt1027100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
URL Encoding
CAPEC
Using Alternative IP Address Encodings
CAPEC
Using Unicode Encoding to Bypass Validation Logic
CAPEC
Using Escaped Slashes in Alternate Encoding
CAPEC
Double Encoding
CAPEC
Navigation Remapping To Propagate Malicious Content
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.