Threat P.E.LnSucP-pS.9

URI: P.E.LnSucP-pS.9

Description: Remote access service LoginService cannot use and be controlled by Process: this arrangement normally implies that a client is using forwarded credentials to access a service. Since LoginService runs Process as a shell command, this makes no sense, unless Process needs credentials from the remote client of LoginService to access some other service. However, in this case there is no such other service.

Threat Type: Primary Threat

Matching Pattern:

MP-LnSucP-pS

Finds a remote access service using a process to which it forwards credentials, where that process does not need those credentials to access another service.

(empty)

Threat P.E.LnSucP-pS.9

MP-LnSucP-pS

Triggered by Threat (0)

Triggers Secondary Threats (0)

Triggered By Control Strategy (0)

Misbehaviour Sets (0)

Control Strategies (0)