Detailedlikelihood: Highseverity: HighDraft

CAPEC-46Overflow Variables and Tags

Abstraction
Detailed
Status
Draft
Likelihood
High
Severity
High

Description

This type of attack leverages the use of tags or variables from a formatted configuration data to cause buffer overflow. The adversary crafts a malicious HTML page or configuration file that includes oversized strings, thus causing an overflow. Metadata: detailed CAPEC pattern, status draft, likelihood high, severity high. Underlying weaknesses: CWE-120, CWE-118, CWE-119, CWE-74, CWE-20 (and 3 more). Related CAPEC patterns: [object Object], [object Object], [object Object].

Related weaknesses· 8

CWE-120CWE-118CWE-119CWE-74CWE-20CWE-680CWE-733CWE-697

Related attack patterns· 3

CAPEC-100 (ChildOf)CAPEC-8 (PeerOf)CAPEC-10 (PeerOf)

Exploits8

TypeTargetConfidenceTier
WeaknessCompiler Optimization Removal or Modification of Security-critical Codecwe-733100%live
WeaknessIncorrect Comparisoncwe-697100%live
WeaknessIncorrect Access of Indexable Resource ('Range Error')cwe-118100%live
WeaknessImproper Restriction of Operations within the Bounds of a Memory Buffercwe-119100%live
WeaknessInteger Overflow to Buffer Overflowcwe-680100%live
WeaknessBuffer Copy without Checking Size of Input ('Classic Buffer Overflow')cwe-120100%live
WeaknessImproper Input Validationcwe-20100%live
WeaknessImproper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')cwe-74100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Buffer Overflow via Parameter Expansion
CAPEC
Buffer Overflow via Environment Variables
CAPEC
Overflow Buffers
CAPEC
Oversized Serialized Data Payloads
CAPEC
Overread Buffers
CAPEC
Forced Integer Overflow
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.