615 indexed
CAPECCAPEC attack patterns
615 MITRE CAPEC entries — attack patterns at meta, standard, and detailed abstraction levels. Filter by abstraction. Authored by Adam Lundqvist.
Showing 1–50 of 615 · page 1 of 13
| ID | Title | Summary |
|---|---|---|
| CAPEC-1 | Accessing Functionality Not Properly Constrained by ACLs | In applications, particularly web applications, access to functionality is mitigated by an authorization framework. This framework maps Access Control Lists (A… |
| CAPEC-10 | Buffer Overflow via Environment Variables | This attack pattern involves causing a buffer overflow through manipulation of environment variables. Once the adversary finds that they can modify an environm… |
| CAPEC-100 | Overflow Buffers | Buffer Overflow attacks target improper or missing bounds checking on buffer operations, typically triggered by input injected by an adversary. As a consequenc… |
| CAPEC-101 | Server Side Include (SSI) Injection | An attacker can use Server Side Include (SSI) Injection to send code to a web application that then gets executed by the web server. Doing so enables the attac… |
| CAPEC-102 | Session Sidejacking | Session sidejacking takes advantage of an unencrypted communication channel between a victim and target system. The attacker sniffs traffic on a network lookin… |
| CAPEC-103 | Clickjacking | An adversary tricks a victim into unknowingly initiating some action in one system while interacting with the UI from a seemingly completely different, usually… |
| CAPEC-104 | Cross Zone Scripting | An attacker is able to cause a victim to load content into their web-browser that bypasses security zone controls and gain access to increased privileges to ex… |
| CAPEC-105 | HTTP Request Splitting | Metadata: detailed CAPEC pattern, status stable, likelihood medium, severity high. Underlying weaknesses: CWE-74, CWE-113, CWE-138, CWE-436. Related CAPEC patt… |
| CAPEC-106 | DEPRECATED: XSS through Log Files | This attack pattern has been deprecated as it referes to an existing chain relationship between "CAPEC-93 : Log Injection-Tampering-Forging" and "CAPEC-63 : Cr… |
| CAPEC-107 | Cross Site Tracing | Cross Site Tracing (XST) enables an adversary to steal the victim's session cookie and possibly other authentication credentials transmitted in the header of t… |
| CAPEC-108 | Command Line Execution through SQL Injection | An attacker uses standard SQL injection methods to inject data into the command line for execution. This could be done directly through misuse of directives su… |
| CAPEC-109 | Object Relational Mapping Injection | An attacker leverages a weakness present in the database access layer code generated with an Object Relational Mapping (ORM) tool or a weakness in the way that… |
| CAPEC-11 | Cause Web Server Misclassification | An attack of this type exploits a Web server's decision to take action based on filename or file extension. Because different file types are handled by differe… |
| CAPEC-110 | SQL Injection through SOAP Parameter Tampering | An attacker modifies the parameters of the SOAP message that is sent from the service consumer to the service provider to initiate a SQL injection attack. On t… |
| CAPEC-111 | JSON Hijacking (aka JavaScript Hijacking) | An attacker targets a system that uses JavaScript Object Notation (JSON) as a transport mechanism between the client and the server (common in Web 2.0 systems … |
| CAPEC-112 | Brute Force | In this attack, some asset (information, functionality, identity, etc.) is protected by a finite secret value. The attacker attempts to gain access to this ass… |
| CAPEC-113 | Interface Manipulation | An adversary manipulates the use or processing of an interface (e.g. Application Programming Interface (API) or System-on-Chip (SoC)) resulting in an adverse i… |
| CAPEC-114 | Authentication Abuse | An attacker obtains unauthorized access to an application, service or device either through knowledge of the inherent weaknesses of an authentication mechanism… |
| CAPEC-115 | Authentication Bypass | An attacker gains access to application, service, or device with the privileges of an authorized or privileged user by evading or circumventing an authenticati… |
| CAPEC-116 | Excavation | An adversary actively probes the target in a manner that is designed to solicit information that could be leveraged for malicious purposes. Metadata: meta CAP… |
| CAPEC-117 | Interception | An adversary monitors data streams to or from the target for information gathering purposes. This attack may be undertaken to solely gather sensitive informati… |
| CAPEC-12 | Choosing Message Identifier | This pattern of attack is defined by the selection of messages distributed via multicast or public information channels that are intended for another client by… |
| CAPEC-120 | Double Encoding | The adversary utilizes a repeating of the encoding process for a set of characters (that is, character encoding a character encoding of a character) to obfusca… |
| CAPEC-121 | Exploit Non-Production Interfaces | Metadata: standard CAPEC pattern, status stable, likelihood low, severity high. Underlying weaknesses: CWE-489, CWE-1209, CWE-1259, CWE-1267, CWE-1270 (and 5 m… |
| CAPEC-122 | Privilege Abuse | An adversary is able to exploit features of the target that should be reserved for privileged users or administrators but are exposed to use by lower or non-pr… |
| CAPEC-123 | Buffer Manipulation | An adversary manipulates an application's interaction with a buffer in an attempt to read or modify data they shouldn't have access to. Buffer attacks are dist… |
| CAPEC-124 | Shared Resource Manipulation | An adversary exploits a resource shared between multiple applications, an application pool or hardware pin multiplexing to affect behavior. Resources may be sh… |
| CAPEC-125 | Flooding | An adversary consumes the resources of a target by rapidly engaging in a large number of interactions with the target. This type of attack generally exposes a … |
| CAPEC-126 | Path Traversal | An adversary uses path manipulation methods to exploit insufficient input validation of a target to obtain access to data that should be not be retrievable by … |
| CAPEC-127 | Directory Indexing | An adversary crafts a request to a target that results in the target listing/indexing the content of a directory as output. One common method of triggering dir… |
| CAPEC-128 | Integer Attacks | An attacker takes advantage of the structure of integer variables to cause these variables to assume values that are not expected by an application. For exampl… |
| CAPEC-129 | Pointer Manipulation | This attack pattern involves an adversary manipulating a pointer within a target application resulting in the application accessing an unintended memory locati… |
| CAPEC-13 | Subverting Environment Variable Values | The adversary directly or indirectly modifies environment variables used by or controlling the target software. The adversary's goal is to cause the target sof… |
| CAPEC-130 | Excessive Allocation | An adversary causes the target to allocate excessive resources to servicing the attackers' request, thereby reducing the resources available for legitimate ser… |
| CAPEC-131 | Resource Leak Exposure | An adversary utilizes a resource leak on the target to deplete the quantity of the resource available to service legitimate requests. Metadata: meta CAPEC pat… |
| CAPEC-132 | Symlink Attack | An adversary positions a symbolic link in such a manner that the targeted user or application accesses the link's endpoint, assuming that it is accessing a fil… |
| CAPEC-133 | Try All Common Switches | An attacker attempts to invoke all common switches and options in the target application for the purpose of discovering weaknesses in the target. For example, … |
| CAPEC-134 | Email Injection | An adversary manipulates the headers and content of an email message by injecting data via the use of delimiter characters native to the protocol. Metadata: s… |
| CAPEC-135 | Format String Injection | An adversary includes formatting characters in a string input field on the target application. Most applications assume that users will provide static text and… |
| CAPEC-136 | LDAP Injection | An attacker manipulates or crafts an LDAP query for the purpose of undermining the security of the target. Some applications use user input to create LDAP quer… |
| CAPEC-137 | Parameter Injection | An adversary manipulates the content of request parameters for the purpose of undermining the security of the target. Some parameter encodings use text charact… |
| CAPEC-138 | Reflection Injection | An adversary supplies a value to the target application which is then used by reflection methods to identify a class, method, or field. For example, in the Jav… |
| CAPEC-139 | Relative Path Traversal | An attacker exploits a weakness in input validation on the target by supplying a specially constructed path utilizing dot and slash characters for the purpose … |
| CAPEC-14 | Client-side Injection-induced Buffer Overflow | This type of attack exploits a buffer overflow vulnerability in targeted client software through injection of malicious content from a custom-built hostile ser… |
| CAPEC-140 | Bypassing of Intermediate Forms in Multiple-Form Sets | Some web applications require users to submit information through an ordered sequence of web forms. This is often done if there is a very large amount of infor… |
| CAPEC-141 | Cache Poisoning | An attacker exploits the functionality of cache technologies to cause specific data to be cached that aids the attackers' objectives. This describes any attack… |
| CAPEC-142 | DNS Cache Poisoning | A domain name server translates a domain name (such as www.example.com) into an IP address that Internet hosts use to contact Internet resources. An adversary … |
| CAPEC-143 | Detect Unpublicized Web Pages | An adversary searches a targeted web site for web pages that have not been publicized. In doing this, the adversary may be able to gain access to information t… |
| CAPEC-144 | Detect Unpublicized Web Services | An adversary searches a targeted web site for web services that have not been publicized. This attack can be especially dangerous since unpublished but availab… |
| CAPEC-145 | Checksum Spoofing | An adversary spoofs a checksum message for the purpose of making a payload appear to have a valid corresponding checksum. Checksums are used to verify message … |