Metaseverity: MediumDraft

CAPEC-129Pointer Manipulation

Abstraction
Meta
Status
Draft
Severity
Medium

Description

This attack pattern involves an adversary manipulating a pointer within a target application resulting in the application accessing an unintended memory location. This can result in the crashing of the application or, for certain pointer values, access to data that would not normally be possible or the execution of arbitrary code. Since pointers are simply integer variables, Integer Attacks may often be used in Pointer Attacks.

Related weaknesses· 3

CWE-682CWE-822CWE-823

Exploits3

TypeTargetConfidenceTier
WeaknessUntrusted Pointer Dereferencecwe-822100%live
WeaknessIncorrect Calculationcwe-682100%live
WeaknessUse of Out-of-range Pointer Offsetcwe-823100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Buffer Manipulation
CAPEC
Integer Attacks
CAPEC
Interface Manipulation
CAPEC
Overflow Buffers
CAPEC
Forced Integer Overflow
CAPEC
File Manipulation
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.