Detailedseverity: LowStable

CAPEC-305TCP ACK Scan

Abstraction
Detailed
Status
Stable
Severity
Low

Description

An adversary uses TCP ACK segments to gather information about firewall or ACL configuration. The purpose of this type of scan is to discover information about filter configurations rather than port state. This type of scanning is rarely useful alone, but when combined with SYN scanning, gives a more complete picture of the type of firewall rules that are present.

Related weaknesses· 1

CWE-200

Related attack patterns· 1

CAPEC-300 (ChildOf)

Exploits1

TypeTargetConfidenceTier
WeaknessExposure of Sensitive Information to an Unauthorized Actorcwe-200100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
TCP ACK Ping
CAPEC
TCP Connect Scan
CAPEC
TCP SYN Scan
CAPEC
UDP Scan
CAPEC
TCP Null Scan
CAPEC
TCP Window Scan
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.