Detailedlikelihood: Highseverity: HighDraft

CAPEC-78Using Escaped Slashes in Alternate Encoding

Abstraction
Detailed
Status
Draft
Likelihood
High
Severity
High

Description

This attack targets the use of the backslash in alternate encoding. An adversary can provide a backslash as a leading character and causes a parser to believe that the next character is special. This is called an escape. By using that trick, the adversary tries to exploit alternate ways to encode the same character which leads to filter problems and opens avenues to attack.

Related weaknesses· 10

CWE-180CWE-181CWE-173CWE-172CWE-73CWE-22CWE-74CWE-20CWE-697CWE-707

Related attack patterns· 1

CAPEC-267 (ChildOf)

Exploits10

TypeTargetConfidenceTier
WeaknessImproper Neutralizationcwe-707100%live
WeaknessExternal Control of File Name or Pathcwe-73100%live
WeaknessIncorrect Comparisoncwe-697100%live
WeaknessImproper Handling of Alternate Encodingcwe-173100%live
WeaknessImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal')cwe-22100%live
WeaknessIncorrect Behavior Order: Validate Before Canonicalizecwe-180100%live
WeaknessImproper Input Validationcwe-20100%live
WeaknessIncorrect Behavior Order: Validate Before Filtercwe-181100%live
WeaknessEncoding Errorcwe-172100%live
WeaknessImproper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')cwe-74100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Using Slashes in Alternate Encoding
CAPEC
Using Slashes and URL Encoding Combined to Bypass Validation Logic
CAPEC
Using Unicode Encoding to Bypass Validation Logic
CAPEC
Using UTF-8 Encoding to Bypass Validation Logic
CAPEC
Postfix, Null Terminate, and Backslash
CAPEC
Double Encoding
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.