An attacker exploits a weakness in a server or client's process of
						delivering and verifying the integrity of code supplied by an
						update-providing server or mechanism to cause code of the attacker's
						choosing to be downloaded and installed as a software update. Attacks
						against automated update mechanisms involve attack vectors which are
						specific to the type of update mechanism, but typically involve two
						different attack strategies: redirection or spoofing. Redirection-based
						attacks exploit two layers of weaknesses in server or client software to
						undermine the integrity of the target code-base.