Command Injection

An attack that executes arbitrary operating system commands on the host through a vulnerable application. It occurs when an application passes unsafe user input directly to a system shell. Successful command injection gives the attacker the same privileges as the application's service account.

Definição editorial da DecipherU. Para definições técnicas autoritativas, consulte NIST, ISO, ou o órgão normativo correspondente.