CAPEC-653: Use of Known Operating System Credentials
ID
CAPEC-653
Typical Severity
High
Likelihood Of Attack
High
Status
Draft
An adversary guesses or obtains (i.e. steals or purchases) legitimate operating system credentials (e.g. userID/password) to achieve authentication and to perform authorized actions on the system, under the guise of an authenticated user or service. This applies to any Operating System.
This attack can be extremely harmful when the operating system credentials used are for a root or admin user. Once an adversary gains access using credentials with elevated privileges, they are free to alter important system files which can effect other users who may use the system or other users on the system's network.
Weaknesses
| # ID | Name | Type |
|---|---|---|
| CWE-262 | Not Using Password Aging | weakness |
| CWE-263 | Password Aging with Long Expiration | weakness |
| CWE-307 | Improper Restriction of Excessive Authentication Attempts | weakness |
| CWE-308 | Use of Single-factor Authentication | weakness |
| CWE-309 | Use of Password System for Primary Authentication | weakness |
| CWE-522 | Insufficiently Protected Credentials | weakness |
| CWE-654 | Reliance on a Single Factor in a Security Decision | weakness |