CAPEC-146: XML Schema Poisoning
ID
CAPEC-146
Typical Severity
High
Likelihood Of Attack
Low
Status
Stable
An adversary corrupts or modifies the content of XML schema information passed between a client and server for the purpose of undermining the security of the target. XML Schemas provide the structure and content definitions for XML documents. Schema poisoning is the ability to manipulate a schema either by replacing or modifying it to compromise the programs that process documents that use this schema.