Resource Manipulation |
Category ID: 262 | Status: Draft |
Summary
An attacker manipulates one or more resources, or some attribute thereof, in order to perform an attack. This is a broad class of attacks wherein the attacker is able to change some aspect of a resource's state and thereby affect application behavior or information integrity. Examples of resources include files, applications, libraries, infrastructure, and configuration information. Outcomes can range from vandalism and reduction in service to the execution of arbitrary code on the target machine.
All applications are potentially vulnerable to this class of attack as all applications rely on resources.
Attacker requirements will vary depending on the nature of the resource to be manipulated and the relationship between this resource and the targeted application, if any.
Nature | Type | ID | Name | Description | View(s) this relationship pertains to |
---|---|---|---|---|---|
ParentOf | Attack Pattern | 31 | Accessing/Intercepting/Modifying HTTP Cookies | Mechanism of Attack (primary)1000 | |
ParentOf | Attack Pattern | 153 | Input Data Manipulation | Mechanism of Attack (primary)1000 | |
ParentOf | Attack Pattern | 154 | Resource Location Attacks | Mechanism of Attack (primary)1000 | |
ParentOf | Attack Pattern | 161 | Infrastructure Manipulation | Mechanism of Attack (primary)1000 | |
ParentOf | Attack Pattern | 165 | File Manipulation | Mechanism of Attack (primary)1000 | |
ParentOf | Attack Pattern | 171 | Variable Manipulation | Mechanism of Attack (primary)1000 | |
ParentOf | Attack Pattern | 176 | Configuration/Environment manipulation | Mechanism of Attack (primary)1000 | |
ParentOf | Attack Pattern | 257 | Abuse of transaction data strutcture | Mechanism of Attack (primary)1000 | |
ParentOf | Attack Pattern | 268 | Audit Log Manipulation | Mechanism of Attack (primary)1000 | |
ParentOf | Attack Pattern | 269 | Registry Manipulation | Mechanism of Attack (primary)1000 | |
ParentOf | Attack Pattern | 271 | Schema Poisoning | Mechanism of Attack (primary)1000 | |
ParentOf | Attack Pattern | 272 | Protocol Manipulation | Mechanism of Attack (primary)1000 | |
MemberOf | View | 1000 | Mechanism of Attack | Mechanism of Attack1000 |