Detailedlikelihood: Mediumseverity: HighDraft

CAPEC-47Buffer Overflow via Parameter Expansion

Abstraction
Detailed
Status
Draft
Likelihood
Medium
Severity
High

Description

In this attack, the target software is given input that the adversary knows will be modified and expanded in size during processing. This attack relies on the target software failing to anticipate that the expanded data may exceed some internal limit, thereby creating a buffer overflow. Metadata: detailed CAPEC pattern, status draft, likelihood medium, severity high. Underlying weaknesses: CWE-120, CWE-119, CWE-118, CWE-130, CWE-131 (and 4 more). Related CAPEC pattern: [object Object].

Related weaknesses· 9

CWE-120CWE-119CWE-118CWE-130CWE-131CWE-74CWE-20CWE-680CWE-697

Related attack patterns· 1

CAPEC-100 (ChildOf)

Exploits9

TypeTargetConfidenceTier
WeaknessIncorrect Calculation of Buffer Sizecwe-131100%live
WeaknessImproper Handling of Length Parameter Inconsistencycwe-130100%live
WeaknessBuffer Copy without Checking Size of Input ('Classic Buffer Overflow')cwe-120100%live
WeaknessIncorrect Access of Indexable Resource ('Range Error')cwe-118100%live
WeaknessImproper Input Validationcwe-20100%live
WeaknessInteger Overflow to Buffer Overflowcwe-680100%live
WeaknessIncorrect Comparisoncwe-697100%live
WeaknessImproper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')cwe-74100%live
WeaknessImproper Restriction of Operations within the Bounds of a Memory Buffercwe-119100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Overflow Buffers
CAPEC
Buffer Manipulation
CAPEC
Buffer Overflow via Environment Variables
CAPEC
Overflow Variables and Tags
CAPEC
Overread Buffers
CAPEC
Exponential Data Expansion
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.