Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CAPEC-168:Windows ::DATA Alternate Data Stream
Attack Pattern ID:168
Version:v3.9
Attack Pattern Name:Windows ::DATA Alternate Data Stream
Abstraction:Detailed
Status:Draft
Likelihood of Attack:
Typical Severity:Medium
DetailsContent HistoryRelated WeaknessesReports
2Weaknesses found
CWE-212
Improper Removal of Sensitive Information Before Storage or Transfer
ShareView Details
Improper Removal of Sensitive Information Before Storage or Transfer
Likelihood of Exploit-Not Available
Mapping-Allowed
Abstraction-Base
Found in87CVEs

The product stores, transfers, or shares a resource that contains sensitive information, but it does not properly remove that information before the product makes the resource available to unauthorized actors.

Impacts-
Read Application DataRead Files or Directories
Tags-
Separation of PrivilegeAttack Surface ReductionRead Files or Directories (impact)Read Application Data (impact)
As Seen In-
CWE Cross-section
CWE-69
Improper Handling of Windows ::DATA Alternate Data Stream
ShareView Details
Improper Handling of Windows ::DATA Alternate Data Stream
Likelihood of Exploit-Not Available
Mapping-Allowed
Abstraction-Variant
Found in2CVEs

The product does not properly prevent access to, or detect usage of, alternate data streams (ADS).

Impacts-
Bypass Protection MechanismHide ActivitiesOther
Tags-
Windows(os class)Other (impact)Bypass Protection Mechanism (impact)Hide Activities (impact)
As Seen In-
Not Available