Detailedlikelihood: Mediumseverity: LowStable

CAPEC-317IP ID Sequencing Probe

Abstraction
Detailed
Status
Stable
Likelihood
Medium
Severity
Low

Description

This OS fingerprinting probe analyzes the IP 'ID' field sequence number generation algorithm of a remote host. Operating systems generate IP 'ID' numbers differently, allowing an attacker to identify the operating system of the host by examining how is assigns ID numbers when generating response packets. RFC 791 does not specify how ID numbers are chosen or their ranges, so ID sequence generation differs from implementation to implementation. There are two kinds of IP 'ID' sequence number analysis - IP 'ID' Sequencing: analyzing the IP 'ID' sequence generation algorithm for one protocol used by a host and Shared IP 'ID' Sequencing: analyzing the packet ordering via IP 'ID' values spanning multiple protocols, such as between ICMP and TCP.

Related weaknesses· 1

CWE-200

Related attack patterns· 1

CAPEC-312 (ChildOf)

Exploits1

TypeTargetConfidenceTier
WeaknessExposure of Sensitive Information to an Unauthorized Actorcwe-200100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
TCP Sequence Number Probe
CAPEC
IP 'ID' Echoed Byte-Order Probe
CAPEC
TCP (ISN) Sequence Predictability Probe
CAPEC
TCP (ISN) Counter Rate Probe
CAPEC
TCP (ISN) Greatest Common Divisor Probe
CAPEC
ICMP IP 'ID' Field Error Message Probe
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.