Detailedlikelihood: Highseverity: HighDraft

CAPEC-9Buffer Overflow in Local Command-Line Utilities

Abstraction
Detailed
Status
Draft
Likelihood
High
Severity
High

Description

This attack targets command-line utilities available in a number of shells. An adversary can leverage a vulnerability found in a command-line utility to escalate privilege to root. Metadata: detailed CAPEC pattern, status draft, likelihood high, severity high. Underlying weaknesses: CWE-120, CWE-118, CWE-119, CWE-74, CWE-20 (and 3 more). Related CAPEC pattern: [object Object].

Related weaknesses· 8

CWE-120CWE-118CWE-119CWE-74CWE-20CWE-680CWE-733CWE-697

Related attack patterns· 1

CAPEC-100 (ChildOf)

Exploits8

TypeTargetConfidenceTier
WeaknessImproper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')cwe-74100%live
WeaknessIncorrect Access of Indexable Resource ('Range Error')cwe-118100%live
WeaknessImproper Input Validationcwe-20100%live
WeaknessInteger Overflow to Buffer Overflowcwe-680100%live
WeaknessBuffer Copy without Checking Size of Input ('Classic Buffer Overflow')cwe-120100%live
WeaknessCompiler Optimization Removal or Modification of Security-critical Codecwe-733100%live
WeaknessImproper Restriction of Operations within the Bounds of a Memory Buffercwe-119100%live
WeaknessIncorrect Comparisoncwe-697100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Buffer Overflow via Environment Variables
CAPEC
Target Programs with Elevated Privileges
CAPEC
Overflow Buffers
CAPEC
Buffer Overflow via Parameter Expansion
CAPEC
OS Command Injection
CAPEC
Exploitation of Improperly Controlled Registers
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.