Detailedlikelihood: Highseverity: HighDraft

CAPEC-10Buffer Overflow via Environment Variables

Abstraction
Detailed
Status
Draft
Likelihood
High
Severity
High

Description

This attack pattern involves causing a buffer overflow through manipulation of environment variables. Once the adversary finds that they can modify an environment variable, they may try to overflow associated buffers. This attack leverages implicit trust often placed in environment variables. Metadata: detailed CAPEC pattern, status draft, likelihood high, severity high. Underlying weaknesses: CWE-120, CWE-302, CWE-118, CWE-119, CWE-74 (and 5 more). Related CAPEC pattern: [object Object].

Related weaknesses· 10

CWE-120CWE-302CWE-118CWE-119CWE-74CWE-99CWE-20CWE-680CWE-733CWE-697

Related attack patterns· 1

CAPEC-100 (ChildOf)

Exploits10

TypeTargetConfidenceTier
WeaknessImproper Restriction of Operations within the Bounds of a Memory Buffercwe-119100%live
WeaknessInteger Overflow to Buffer Overflowcwe-680100%live
WeaknessImproper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')cwe-74100%live
WeaknessImproper Control of Resource Identifiers ('Resource Injection')cwe-99100%live
WeaknessAuthentication Bypass by Assumed-Immutable Datacwe-302100%live
WeaknessBuffer Copy without Checking Size of Input ('Classic Buffer Overflow')cwe-120100%live
WeaknessImproper Input Validationcwe-20100%live
WeaknessIncorrect Comparisoncwe-697100%live
WeaknessCompiler Optimization Removal or Modification of Security-critical Codecwe-733100%live
WeaknessIncorrect Access of Indexable Resource ('Range Error')cwe-118100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Buffer Overflow in Local Command-Line Utilities
CAPEC
Overflow Buffers
CAPEC
Subverting Environment Variable Values
CAPEC
Buffer Overflow via Parameter Expansion
CAPEC
Buffer Manipulation
CAPEC
Overflow Variables and Tags
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.