| Name |
Resource Location Spoofing |
|
| Likelyhood of attack |
Typical severity |
| Medium |
Medium |
|
| Summary |
An adversary deceives an application or user and convinces them to request a resource from an unintended location. By spoofing the location, the adversary can cause an alternate resource to be used, often one that the adversary controls and can be used to help them achieve their malicious goals. |
| Prerequisites |
None. All applications rely on file paths and therefore, in theory, they or their resources could be affected by this type of attack. |
| Solutions | Monitor network activity to detect any anomalous or unauthorized communication exchanges. |
| Related Weaknesses |
|
CWE ID
|
Description
|
| CWE-451 |
User Interface (UI) Misrepresentation of Critical Information |
|