Detailedseverity: LowStable

CAPEC-308UDP Scan

Abstraction
Detailed
Status
Stable
Severity
Low

Description

An adversary engages in UDP scanning to gather information about UDP port status on the target system. UDP scanning methods involve sending a UDP datagram to the target port and looking for evidence that the port is closed. Open UDP ports usually do not respond to UDP datagrams as there is no stateful mechanism within the protocol that requires building or establishing a session. Responses to UDP datagrams are therefore application specific and cannot be relied upon as a method of detecting an open port. UDP scanning relies heavily upon ICMP diagnostic messages in order to determine the status of a remote port.

Related weaknesses· 1

CWE-200

Related attack patterns· 1

CAPEC-300 (ChildOf)

Exploits1

TypeTargetConfidenceTier
WeaknessExposure of Sensitive Information to an Unauthorized Actorcwe-200100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
UDP Ping
CAPEC
Port Scanning
CAPEC
UDP Flood
CAPEC
TCP Null Scan
CAPEC
TCP Connect Scan
CAPEC
TCP SYN Scan
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.