Standardlikelihood: Highseverity: Very HighDraft

CAPEC-40Manipulating Writeable Terminal Devices

Abstraction
Standard
Status
Draft
Likelihood
High
Severity
Very High

Description

This attack exploits terminal devices that allow themselves to be written to by other users. The attacker sends command strings to the target terminal device hoping that the target user will hit enter and thereby execute the malicious command with their privileges. The attacker can send the results (such as copying /etc/passwd) to a known directory and collect once the attack has succeeded.

Related weaknesses· 1

CWE-77

Related attack patterns· 1

CAPEC-248 (ChildOf)

Exploits1

TypeTargetConfidenceTier
WeaknessImproper Neutralization of Special Elements used in a Command ('Command Injection')cwe-77100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
DEPRECATED: Linux Terminal Injection
CAPEC
OS Command Injection
CAPEC
Command Injection
CAPEC
Privilege Abuse
CAPEC
Collect Data from Clipboard
Technique
Input Capture
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.