CAPEC-100: Overflow Buffers

Description
Buffer Overflow attacks target improper or missing bounds checking on buffer operations, typically triggered by input injected by an adversary. As a consequence, an adversary is able to write past the boundaries of allocated buffer regions in memory, causing a program crash or potentially redirection of execution as per the adversaries' choice.

Severity :

Very High

Possibility :

High

Type :

Standard
Prerequisites

This table shows the other attack patterns and high level categories that are related to this attack pattern.

  • Targeted software performs buffer operations.
  • Targeted software inadequately performs bounds-checking on buffer operations.
  • Adversary has the capability to influence the input to buffer operations.
Skills required

This table shows the other attack patterns and high level categories that are related to this attack pattern.

  • Low In most cases, overflowing a buffer does not require advanced skills beyond the ability to notice an overflow and stuff an input variable with content.
  • High In cases of directed overflows, where the motive is to divert the flow of the program or application as per the adversaries' bidding, high level skills are required. This may involve detailed knowledge of the target system architecture and kernel.
Taxonomy mappings

Mappings to ATT&CK, OWASP and other frameworks.

Resources required

None: No specialized resources are required to execute this type of attack. Detecting and exploiting a buffer overflow does not require any resources beyond knowledge of and access to the target system.

Visit http://capec.mitre.org/ for more details.

© cvefeed.io
Latest DB Update: Dec. 14, 2024 3:18