615 indexed
CAPECCAPEC attack patterns
615 MITRE CAPEC entries — attack patterns at meta, standard, and detailed abstraction levels. Filter by abstraction. Authored by Adam Lundqvist.
Showing 151–200 of 615 · page 4 of 13
| ID | Title | Summary |
|---|---|---|
| CAPEC-242 | Code Injection | An adversary exploits a weakness in input validation on the target to inject new code into that which is currently executing. This differs from code inclusion … |
| CAPEC-243 | XSS Targeting HTML Attributes | An adversary inserts commands to perform cross-site scripting (XSS) actions in HTML attributes. Many filters do not adequately sanitize attributes against the … |
| CAPEC-244 | XSS Targeting URI Placeholders | An attack of this type exploits the ability of most browsers to interpret "data", "javascript" or other URI schemes as client-side executable content placehold… |
| CAPEC-245 | XSS Using Doubled Characters | The adversary bypasses input validation by using doubled characters in order to perform a cross-site scripting attack. Some filters fail to recognize dangerous… |
| CAPEC-246 | DEPRECATED: XSS Using Flash | This pattern has been deprecated as it is covered by a chaining relationship between CAPEC-174: Flash Parameter Injection and CAPEC-591: Stored XSS. Please ref… |
| CAPEC-247 | XSS Using Invalid Characters | An adversary inserts invalid characters in identifiers to bypass application filtering of input. Filters may not scan beyond invalid characters but during late… |
| CAPEC-248 | Command Injection | An adversary looking to execute a command of their choosing, injects new items into an existing command thus modifying interpretation away from what was intend… |
| CAPEC-249 | DEPRECATED: Linux Terminal Injection | This attack pattern has been deprecated as it is covered by "CAPEC-40 : Manipulating Writeable Terminal Devices". Please refer to this CAPEC going forward. Me… |
| CAPEC-25 | Forced Deadlock | The adversary triggers and exploits a deadlock condition in the target software to cause a denial of service. A deadlock can occur when two or more competing a… |
| CAPEC-250 | XML Injection | An attacker utilizes crafted XML user-controllable input to probe, attack, and inject data into the XML database, using techniques similar to SQL injection. Th… |
| CAPEC-251 | Local Code Inclusion | The attacker forces an application to load arbitrary code files from the local machine. The attacker could use this to try to load old versions of library file… |
| CAPEC-252 | PHP Local File Inclusion | The attacker loads and executes an arbitrary local PHP file on a target machine. The attacker could use this to try to load old versions of PHP files that have… |
| CAPEC-253 | Remote Code Inclusion | The attacker forces an application to load arbitrary code files from a remote location. The attacker could use this to try to load old versions of library file… |
| CAPEC-254 | DEPRECATED: DTD Injection in a SOAP Message | This pattern has been deprecated as it was determined to be an unnecessary layer of abstraction. Please refer to the pattern CAPEC-228 : DTD Injection going fo… |
| CAPEC-256 | SOAP Array Overflow | An attacker sends a SOAP request with an array whose actual length exceeds the length indicated in the request. If the server processing the transmission naive… |
| CAPEC-257 | DEPRECATED: Abuse of Transaction Data Structure | This attack pattern has been deprecated as it was deemed not to be a legitimate attack pattern. Metadata: meta CAPEC pattern, status deprecated. Metadata: me… |
| CAPEC-258 | DEPRECATED: Passively Sniffing and Capturing Application Code Bound for an Authorized Client During Dynamic Update | This attack pattern has been deprecated as it is a duplicate of the existing attack pattern "CAPEC-65 : Sniff Application Code". Please refer to this other CAP… |
| CAPEC-259 | DEPRECATED: Passively Sniffing and Capturing Application Code Bound for an Authorized Client During Patching | This attack pattern has been deprecated as it is a duplicate of the existing attack pattern "CAPEC-65 : Sniff Application Code". Please refer to this other CAP… |
| CAPEC-26 | Leveraging Race Conditions | The adversary targets a race condition occurring when multiple processes access and manipulate the same resource concurrently, and the outcome of the execution… |
| CAPEC-260 | DEPRECATED: Passively Sniffing and Capturing Application Code Bound for an Authorized Client During Initial Distribution | This attack pattern has been deprecated as it is a duplicate of the existing attack pattern "CAPEC-65 : Sniff Application Code". Please refer to this other CAP… |
| CAPEC-261 | Fuzzing for garnering other adjacent user/sensitive data | An adversary who is authorized to send queries to a target sends variants of expected queries in the hope that these modified queries might return information … |
| CAPEC-263 | Force Use of Corrupted Files | This describes an attack where an application is forced to use a file that an attacker has corrupted. The result is often a denial of service caused by the app… |
| CAPEC-264 | DEPRECATED: Environment Variable Manipulation | This attack pattern has been deprecated as it is a duplicate of the existing attack pattern "CAPEC-13 : Subverting Environment Variable Values". Please refer t… |
| CAPEC-265 | DEPRECATED: Global variable manipulation | This attack pattern has been deprecated as it is a duplicate of the existing attack pattern "CAPEC-77 : Manipulating User-Controlled Variables". Please refer t… |
| CAPEC-266 | DEPRECATED: Manipulate Canonicalization | This attack pattern has been deprecated. Metadata: meta CAPEC pattern, status deprecated. Metadata: meta CAPEC pattern, status deprecated. |
| CAPEC-267 | Leverage Alternate Encoding | An adversary leverages the possibility to encode potentially harmful input or content used by applications such that the applications are ineffective at valida… |
| CAPEC-268 | Audit Log Manipulation | The attacker injects, manipulates, deletes, or forges malicious log entries into the log file, in an attempt to mislead an audit of the log file or cover track… |
| CAPEC-269 | DEPRECATED: Registry Manipulation | This pattern has been deprecated as it was determined to be a duplicate of another pattern. Please refer to the pattern CAPEC-203 : Manipulate Application Regi… |
| CAPEC-27 | Leveraging Race Conditions via Symbolic Links | This attack leverages the use of symbolic links (Symlinks) in order to write to sensitive files. An attacker can create a Symlink link to a target file not oth… |
| CAPEC-270 | Modification of Registry Run Keys | An adversary adds a new entry to the "run keys" in the Windows registry so that an application of their choosing is executed when a user logs in. In this way, … |
| CAPEC-271 | Schema Poisoning | An adversary corrupts or modifies the content of a schema for the purpose of undermining the security of the target. Schemas provide the structure and content … |
| CAPEC-272 | Protocol Manipulation | An adversary subverts a communications protocol to perform an attack. This type of attack can allow an adversary to impersonate others, discover sensitive info… |
| CAPEC-273 | HTTP Response Smuggling | Metadata: detailed CAPEC pattern, status stable, likelihood medium, severity high. Underlying weaknesses: CWE-74, CWE-436, CWE-444. Related CAPEC patterns: [ob… |
| CAPEC-274 | HTTP Verb Tampering | An attacker modifies the HTTP Verb (e.g. GET, PUT, TRACE, etc.) in order to bypass access restrictions. Some web environments allow administrators to restrict … |
| CAPEC-275 | DNS Rebinding | An adversary serves content whose IP address is resolved by a DNS server that the adversary controls. After initial contact by a web browser (or similar client… |
| CAPEC-276 | Inter-component Protocol Manipulation | Inter-component protocols are used to communicate between different software and hardware modules within a single computer. Common examples are: interrupt sign… |
| CAPEC-277 | Data Interchange Protocol Manipulation | Data Interchange Protocols are used to transmit structured data between entities. These protocols are often specific to a particular domain (B2B: purchase orde… |
| CAPEC-278 | Web Services Protocol Manipulation | An adversary manipulates a web service related protocol to cause a web application or service to react differently than intended. This can either be performed … |
| CAPEC-279 | SOAP Manipulation | Simple Object Access Protocol (SOAP) is used as a communication protocol between a client and server to invoke web services on the server. It is an XML-based p… |
| CAPEC-28 | Fuzzing | In this attack pattern, the adversary leverages fuzzing to try to identify weaknesses in the system. Fuzzing is a software security and functionality testing m… |
| CAPEC-280 | DEPRECATED: SOAP Parameter Tampering | This attack pattern has been deprecated as its contents have been included in CAPEC-279 : SOAP Manipulation. Please refer to this other pattern going forward. … |
| CAPEC-285 | ICMP Echo Request Ping | An adversary sends out an ICMP Type 8 Echo Request, commonly known as a 'Ping', in order to determine if a target system is responsive. If the request is not b… |
| CAPEC-287 | TCP SYN Scan | An adversary uses a SYN scan to determine the status of ports on the remote target. SYN scanning is the most common type of port scanning that is used because … |
| CAPEC-288 | DEPRECATED: ICMP Echo Request Ping | This attack pattern has been deprecated as it is a duplicate of the existing attack pattern "CAPEC-285". Please refer to this other CAPEC going forward. Metad… |
| CAPEC-289 | DEPRECATED: Infrastructure-based footprinting | This attack pattern has been deprecated as it was determined to be an unnecessary layer of abstraction. Please refer to the meta level pattern CAPEC-169 : goin… |
| CAPEC-29 | Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions | This attack targets a race condition occurring between the time of check (state) for a resource and the time of use of a resource. A typical example is file ac… |
| CAPEC-290 | Enumerate Mail Exchange (MX) Records | An adversary enumerates the MX records for a given via a DNS query. This type of information gathering returns the names of mail servers on the network. Mail s… |
| CAPEC-291 | DNS Zone Transfers | An attacker exploits a DNS misconfiguration that permits a ZONE transfer. Some external DNS servers will return a list of IP address and valid hostnames. Under… |
| CAPEC-292 | Host Discovery | An adversary sends a probe to an IP address to determine if the host is alive. Host discovery is one of the earliest phases of network reconnaissance. The adve… |
| CAPEC-293 | Traceroute Route Enumeration | An adversary uses a traceroute utility to map out the route which data flows through the network in route to a target destination. Tracerouting can allow the a… |