Dark Mode
Capec-650 Detail
Upload a Web Shell to a Web Server
Detailed Software Typical Severity: High
Parents: 17
Threats: T72 T277 T280 T293 T340 T383 T386 T396 T399
Tools: 18
By exploiting insufficient permissions, it is possible to upload a web shell to a web server in such a way that it can be executed remotely. This shell can have various capabilities, thereby acting as a "gateway" to the underlying web server. The shell might execute at the higher permission level of the web server, providing the ability the execute malicious code at elevated levels.
Not present
| External ID | Source | Link | Description |
|---|---|---|---|
| CAPEC-650 | capec | https://capec.mitre.org/data/definitions/650.html | |
| CWE-287 | cwe | http://cwe.mitre.org/data/definitions/287.html | |
| CWE-553 | cwe | http://cwe.mitre.org/data/definitions/553.html | |
| T1505.003 | ATTACK | https://attack.mitre.org/wiki/Technique/T1505/003 | Server Software Component:Web Shell |
Not present
- The web server is susceptible to one of the various web application exploits that allows for uploading a shell file.
Not present
Not present
| Integrity | Availability | Authorization | Access Control | Confidentiality |
|---|---|---|---|---|
| Execute Unauthorized Commands | Execute Unauthorized Commands | Gain Privileges | Gain Privileges | Read Data |
| Gain Privileges | ||||
| Execute Unauthorized Commands |
Not present