StandardDraft

CAPEC-486UDP Flood

Abstraction
Standard
Status
Draft

Description

An adversary may execute a flooding attack using the UDP protocol with the intent to deny legitimate users access to a service by consuming the available network bandwidth. Additionally, firewalls often open a port for each UDP connection destined for a service with an open UDP port, meaning the firewalls in essence save the connection state thus the high packet nature of a UDP flood can also overwhelm resources allocated to the firewall. UDP attacks can also target services like DNS or VoIP which utilize these protocols. Additionally, due to the session-less nature of the UDP protocol, the source of a packet is easily spoofed making it difficult to find the source of the attack.

Related weaknesses· 1

CWE-770

Related attack patterns· 1

CAPEC-125 (ChildOf)

Exploits1

TypeTargetConfidenceTier
WeaknessAllocation of Resources Without Limits or Throttlingcwe-770100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
ICMP Flood
CAPEC
TCP Flood
CAPEC
HTTP Flood
CAPEC
UDP Ping
CAPEC
UDP Scan
CAPEC
UDP Fragmentation
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.