StandardDraft

CAPEC-496ICMP Fragmentation

Abstraction
Standard
Status
Draft

Description

An attacker may execute a ICMP Fragmentation attack against a target with the intention of consuming resources or causing a crash. The attacker crafts a large number of identical fragmented IP packets containing a portion of a fragmented ICMP message. The attacker these sends these messages to a target host which causes the host to become non-responsive. Another vector may be sending a fragmented ICMP message to a target host with incorrect sizes in the header which causes the host to hang.

Related weaknesses· 2

CWE-770CWE-404

Related attack patterns· 1

CAPEC-130 (ChildOf)

Exploits2

TypeTargetConfidenceTier
WeaknessAllocation of Resources Without Limits or Throttlingcwe-770100%live
WeaknessImproper Resource Shutdown or Releasecwe-404100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
UDP Fragmentation
CAPEC
ICMP Flood
CAPEC
TCP Fragmentation
CAPEC
ICMP Error Message Echoing Integrity Probe
CAPEC
ICMP Error Message Quoting Probe
CAPEC
UDP Flood
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.