Detailed attack pattern
Stable
CAPEC-296: ICMP Information Request
An adversary sends an ICMP Information Request to a host to determine if it will respond to this deprecated mechanism. ICMP Information Requests are a deprecated message type. Information Requests were originally used for diskless machines to automatically obtain their network configuration, but this message type has been superseded by more robust protocol implementations like DHCP.
Last updated
Low
Typical severity
Per MITRE
Not rated
Likelihood of attack
Per MITRE
1
Related weaknesses
CWEs this targets
Detailed
Abstraction
MITRE classification
Overview
CAPEC-296 (ICMP Information Request) is a detailed-level attack pattern catalogued by MITRE in the Common Attack Pattern Enumeration and Classification (CAPEC). It describes a recurring method attackers use to exploit software weaknesses.
What the attacker needs
Prerequisites
- The ability to send an ICMP Type 15 Information Request and receive an ICMP Type 16 Information Reply in response.
Skills required
- Low skill: The adversary needs to know certain linux commands for this type of attack.
Resources required
- Scanners or utilities that provide the ability to send custom ICMP queries.
Consequences
What a successful CAPEC-296 attack can achieve.
Other
Affects: Confidentiality