CAPEC-695: Repo Jacking

Description
<p>An adversary takes advantage of the redirect property of directly linked Version Control System (VCS) repositories to trick users into incorporating malicious code into their applications.<p>
Extended Description

Software developers may directly reference a VCS repository (i.e., via a hardcoded URL) within source code to integrate the repository as a dependency for the underlying application. If the repository owner/maintainer modifies the repository name, changes their VCS username, or transfers ownership of the repository, the VCS implements a redirect to the new repository location so that existing software referencing the repository will not break. However, if the original location of the repository is reestablished, the VCS will revert to resolving the hardcoded path. Adversaries may, therefore, re-register deleted or previously used usernames and recreate repositories with malicious code to infect applications referencing the repository. When an application then fetches the desired dependency, it will now reference the adversary's malicious repository since the hardcoded repository path is once again active. This ultimately allows the adversary to infect numerous applications, while achieving a variety of negative technical impacts.

Severity :

High

Possibility :

Medium

Type :

Detailed
Relationships with other CAPECs

This table shows the other attack patterns and high level categories that are related to this attack pattern.

CAPEC-616: Establish Rogue Location Establish Rogue Location
Prerequisites

This table shows the other attack patterns and high level categories that are related to this attack pattern.

  • Identification of a popular repository that may be directly referenced in numerous software applications
  • A repository owner/maintainer who has recently changed their username or deleted their account
Skills required

This table shows the other attack patterns and high level categories that are related to this attack pattern.

  • Low Ability to create an account on a VCS hosting site and recreate an existing directory structure.
  • Low Ability to create malware that can exploit various software applications.
Taxonomy mappings

Mappings to ATT&CK, OWASP and other frameworks.

ATTACK | Supply Chain Compromise: Compromise Software Dependencies and Development Tools
Related CWE

A Related Weakness relationship associates a weakness with this attack pattern. Each association implies a weakness that must exist for a given attack to be successful.

CWE-494: Download of Code Without Integrity Check

CWE-829: Inclusion of Functionality from Untrusted Control Sphere

Visit http://capec.mitre.org/ for more details.