CAPEC-616: Establish Rogue Location

Standard Stable 严重程度: Medium 攻击可能性: Medium

CAPEC版本: 3.9

更新日期: 2023-01-24

攻击模式描述

An adversary provides a malicious version of a resource at a location that is similar to the expected location of a legitimate resource. After establishing the rogue location, the adversary waits for a victim to visit the location and access the malicious resource.

前提条件

A resource is expected to available to the user.

所需技能

Low Adversaries can often purchase low-cost technology to implement rogue access points.

后果影响

影响范围: Confidentiality Integrity

技术影响: Other

说明: Successful attacks of this nature can result in a wide variety of consequences and negatively impact confidentiality and integrity based on the adversary's subsequent actions.

分类映射

分类名称	条目ID	条目名称
ATTACK	1036.005	Masquerading: Match Legitimate Name or Location

关键信息

CAPEC ID: CAPEC-616

抽象级别: Standard

状态: Stable

典型严重程度: Medium

攻击可能性: Medium

CAPEC-616: Establish Rogue Location

攻击模式描述

前提条件

所需技能

后果影响

分类映射

关键信息

相关攻击模式

相关CWE弱点

CAPEC-616: Establish Rogue Location

攻击模式描述

前提条件

所需技能

后果影响

分类映射

关键信息

相关攻击模式

ChildOf CAPEC-154

CanPrecede CAPEC-691

相关CWE弱点