VSecLab - Capec-563

Dark Mode

Settings

Capec-563 Detail

Add Malicious File to Shared Webroot

Detailed Software

Parents: 17

Threats: T72 T280 T286 T293 T336 T386 T390 T399 T405

Description

An adversaries may add malicious content to a website through the open file share and then browse to that content with a web browser to cause the server to execute the content. The malicious content will typically run under the context and permissions of the web server process, often resulting in local system or administrative privileges depending on how the web server is configured.

Extended Description

Not present

External References

External ID	Source	Link	Description
CAPEC-563	capec	https://capec.mitre.org/data/definitions/563.html
CWE-284	cwe	http://cwe.mitre.org/data/definitions/284.html

Execution Flow

Not present

Prerequisites

Not present

Resource Required

Not present

Skills Required

Not present

Consequences

Not present

Example Instances

Not present