CAPEC-551: Modify Existing Service

Detailed Draft

CAPEC版本: 3.9

更新日期: 2023-01-24

攻击模式描述

When an operating system starts, it also starts programs called services or daemons. Modifying existing services may break existing services or may enable services that are disabled/not commonly used.

缓解措施

Limit privileges of user accounts so service changes can only be performed by authorized administrators. Also monitor any service changes that may occur inadvertently.

分类映射

分类名称 条目ID 条目名称
ATTACK 1543 Create or Modify System Process
关键信息

CAPEC ID: CAPEC-551

抽象级别: Detailed

状态: Draft

相关攻击模式
ChildOf CAPEC-542

Targeted Malware

Standard
相关CWE弱点
CWE-284 CWE-522
返回列表