Detailedlikelihood: Mediumseverity: LowStable

CAPEC-328TCP 'RST' Flag Checksum Probe

Abstraction
Detailed
Status
Stable
Likelihood
Medium
Severity
Low

Description

This OS fingerprinting probe performs a checksum on any ASCII data contained within the data portion or a RST packet. Some operating systems will report a human-readable text message in the payload of a 'RST' (reset) packet when specific types of connection errors occur. RFC 1122 allows text payloads within reset packets but not all operating systems or routers implement this functionality.

Related weaknesses· 1

CWE-200

Related attack patterns· 1

CAPEC-312 (ChildOf)

Exploits1

TypeTargetConfidenceTier
WeaknessExposure of Sensitive Information to an Unauthorized Actorcwe-200100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
TCP Options Probe
CAPEC
TCP Timestamp Probe
CAPEC
TCP Sequence Number Probe
CAPEC
TCP Congestion Control Flag (ECN) Probe
CAPEC
IP 'ID' Echoed Byte-Order Probe
CAPEC
ICMP IP Total Length Field Probe
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.