CAPEC-207: Removing Important Client Functionality

Description
An adversary removes or disables functionality on the client that the server assumes to be present and trustworthy.
Extended Description

Adversaries can, in some cases, get around logic put in place to 'guard' sensitive functionality or data. Client applications may include functionality that a server relies on for correct and secure operation. This functionality can include, but is not limited to, filters to prevent the sending of dangerous content to the server, logical functionality such as price calculations, and authentication logic to ensure that only authorized users are utilizing the client. If an adversary can disable this functionality on the client, they can perform actions that the server believes are prohibited. This can result in client behavior that violates assumptions by the server leading to a variety of possible attacks. In the above examples, this could include the sending of dangerous content (such as scripts) to the server, incorrect price calculations, or unauthorized access to server resources.

Severity :

High

Possibility :

Medium

Type :

Standard
Relationships with other CAPECs

This table shows the other attack patterns and high level categories that are related to this attack pattern.

CAPEC-22: Exploiting Trust in Client Exploiting Trust in Client CAPEC-200: Removal of filters: Input filters, output filters, data masking Removal of filters: Input filters, output filters, data masking CAPEC-208: Removing/short-circuiting 'Purse' logic: removing/mutating 'cash' decrements Removing/short-circuiting 'Purse' logic: removing/mutating 'cash' decrements
Prerequisites

This table shows the other attack patterns and high level categories that are related to this attack pattern.

  • The targeted server must assume the client performs important actions to protect the server or the server functionality. For example, the server may assume the client filters outbound traffic or that the client performs all price calculations correctly. Moreover, the server must fail to detect when these assumptions are violated by a client.
Skills required

This table shows the other attack patterns and high level categories that are related to this attack pattern.

  • High To reverse engineer the client-side code to disable/remove the functionality on the client that the server relies on.
  • Low The adversary installs a web tool that allows scripts or the DOM model of web-based applications to be modified before they are executed in a browser. GreaseMonkey and Firebug are two examples of such tools.
Taxonomy mappings

Mappings to ATT&CK, OWASP and other frameworks.

Resources required

The adversary must have access to a client and be able to modify the client behavior, often through reverse engineering. If the server is assuming specific client functionality, this usually means the server only recognizes a specific client application, rather than a broad class of client applications. Reverse engineering tools would likely be necessary.

Related CWE

A Related Weakness relationship associates a weakness with this attack pattern. Each association implies a weakness that must exist for a given attack to be successful.

CWE-602: Client-Side Enforcement of Server-Side Security

Visit http://capec.mitre.org/ for more details.