CAPEC-478: Modification of Windows Service Configuration
ID
CAPEC-478
Typical Severity
High
Likelihood Of Attack
Low
Status
Usable
An adversary exploits a weakness in access control to modify the execution parameters of a Windows service. The goal of this attack is to execute a malicious binary in place of an existing service.
Weaknesses
| # ID | Name | Type |
|---|---|---|
| CWE-284 | Improper Access Control | weakness |
Taxonomiy Mapping
| Type | # ID | Name |
|---|---|---|
| ATTACK | 1574.011 | Hijack Execution Flow:Service Registry Permissions Weakness |
| ATTACK | 1543.003 | Create or Modify System Process:Windows Service |