Detailedlikelihood: Highseverity: HighDraft

CAPEC-92Forced Integer Overflow

Abstraction
Detailed
Status
Draft
Likelihood
High
Severity
High

Description

This attack forces an integer variable to go out of range. The integer variable is often used as an offset such as size of memory allocation or similarly. The attacker would typically control the value of such variable and try to get it out of range. For instance the integer in question is incremented past the maximum possible value, it may wrap to become a very small, or negative number, therefore providing a very incorrect value which can lead to unexpected behavior. At worst the attacker can execute arbitrary code.

Related weaknesses· 7

CWE-190CWE-128CWE-120CWE-122CWE-196CWE-680CWE-697

Related attack patterns· 1

CAPEC-128 (ChildOf)

Exploits7

TypeTargetConfidenceTier
WeaknessHeap-based Buffer Overflowcwe-122100%live
WeaknessInteger Overflow to Buffer Overflowcwe-680100%live
WeaknessUnsigned to Signed Conversion Errorcwe-196100%live
WeaknessBuffer Copy without Checking Size of Input ('Classic Buffer Overflow')cwe-120100%live
WeaknessInteger Overflow or Wraparoundcwe-190100%live
WeaknessWrap-around Errorcwe-128100%live
WeaknessIncorrect Comparisoncwe-697100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Integer Attacks
CAPEC
Overflow Buffers
CAPEC
Buffer Overflow via Parameter Expansion
CAPEC
Pointer Manipulation
CAPEC
Overflow Variables and Tags
CAPEC
Buffer Overflow via Environment Variables
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.