StandardDraft

CAPEC-482TCP Flood

Abstraction
Standard
Status
Draft

Description

An adversary may execute a flooding attack using the TCP protocol with the intent to deny legitimate users access to a service. These attacks exploit the weakness within the TCP protocol where there is some state information for the connection the server needs to maintain. This often involves the use of TCP SYN messages.

Related weaknesses· 1

CWE-770

MITRE ATT&CK crosswalk· 3

T1498.001: Network Denial of Service: Direct Network FloodT1499.001: Endpoint Denial of Service: OS Exhaustion FloodT1499.002: Endpoint Denial of Service: Service Exhaustion Flood

Related attack patterns· 1

CAPEC-125 (ChildOf)

Exploits1

TypeTargetConfidenceTier
WeaknessAllocation of Resources Without Limits or Throttlingcwe-770100%live

Related to3

TypeTargetConfidenceTier
SubTechniqueService Exhaustion Floodt1499.002100%live
SubTechniqueDirect Network Floodt1498.001100%live
SubTechniqueOS Exhaustion Floodt1499.001100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
ICMP Flood
CAPEC
UDP Flood
CAPEC
HTTP Flood
CAPEC
SSL Flood
CAPEC
TCP SYN Ping
CAPEC
Flooding
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.