CAPEC-276: Inter-component Protocol Manipulation

Inter-component protocols are used to communicate between different software and hardware modules within a single computer. Common examples are: interrupt signals and data pipes. Subverting the protocol can allow an adversary to impersonate others, discover sensitive information, control the outcome of a session, or perform other attacks. This type of attack targets invalid assumptions that may be inherent in implementers of the protocol, incorrect implementations of the protocol, or vulnerabilities in the protocol itself.

Not rated

Typical severity

Per MITRE

Not rated

Likelihood of attack

Per MITRE

Related weaknesses

CWEs this targets

Standard

Abstraction

MITRE classification

Overview

CAPEC-276 (Inter-component Protocol Manipulation) is a standard-level attack pattern catalogued by MITRE in the Common Attack Pattern Enumeration and Classification (CAPEC). It describes a recurring method attackers use to exploit software weaknesses.

CAPEC-276: Inter-component Protocol Manipulation

Overview

Frequently asked questions

What is CAPEC-276?

What weaknesses does CAPEC-276 target?

References

Defend against CAPEC-276

Overview

Related weaknesses

Related attack patterns

Parent

Child

Frequently asked questions

What is CAPEC-276?

What weaknesses does CAPEC-276 target?

References

Defend against CAPEC-276