CAPEC-154: Resource Location Spoofing

Description
An adversary deceives an application or user and convinces them to request a resource from an unintended location. By spoofing the location, the adversary can cause an alternate resource to be used, often one that the adversary controls and can be used to help them achieve their malicious goals.
Extended Description

For example, using a different character encoding might cause dangerous text to be treated as safe text. Alternatively, the attacker may use certain flags, such as file extensions, to make a target application believe that provided data should be handled using a certain interpreter when the data is not actually of the appropriate type. This can lead to bypassing protection mechanisms, forcing the target to use specific components for input processing, or otherwise causing the user's data to be handled differently than might otherwise be expected. This attack differs from Variable Manipulation in that Variable Manipulation attempts to subvert the target's processing through the value of the input while Input Data Manipulation seeks to control how the input is processed.

Severity :

Medium

Possibility :

Medium

Type :

Meta
Relationships with other CAPECs

This table shows the other attack patterns and high level categories that are related to this attack pattern.

CAPEC-33: HTTP Request Smuggling HTTP Request Smuggling CAPEC-34: HTTP Response Splitting HTTP Response Splitting CAPEC-105: HTTP Request Splitting HTTP Request Splitting CAPEC-159: Redirect Access to Libraries Redirect Access to Libraries CAPEC-273: HTTP Response Smuggling HTTP Response Smuggling CAPEC-616: Establish Rogue Location Establish Rogue Location
Prerequisites

This table shows the other attack patterns and high level categories that are related to this attack pattern.

  • None. All applications rely on file paths and therefore, in theory, they or their resources could be affected by this type of attack.
Skills required

This table shows the other attack patterns and high level categories that are related to this attack pattern.

Taxonomy mappings

Mappings to ATT&CK, OWASP and other frameworks.

Resources required

None: No specialized resources are required to execute this type of attack.

Related CWE

A Related Weakness relationship associates a weakness with this attack pattern. Each association implies a weakness that must exist for a given attack to be successful.

CWE-451: User Interface (UI) Misrepresentation of Critical Information

Visit http://capec.mitre.org/ for more details.