CAPEC-478: Modification of Windows Service Configuration
ID
CAPEC-478
Typical Severity
High
Likelihood Of Attack
Low
Status
Usable
An adversary exploits a weakness in access control to modify the execution parameters of a Windows service. The goal of this attack is to execute a malicious binary in place of an existing service.
Weaknesses
# ID | Name | Type |
---|---|---|
CWE-284 | Improper Access Control | weakness |
Taxonomiy Mapping
Type | # ID | Name |
---|---|---|
ATTACK | 1574.011 | Hijack Execution Flow:Service Registry Permissions Weakness |
ATTACK | 1543.003 | Create or Modify System Process:Windows Service |