CAPEC-310: Scanning for Vulnerable Software

An attacker engages in scanning activity to find vulnerable software versions or types, such as operating system versions or network services. Vulnerable or exploitable network configurations, such as improperly firewalled systems, or misconfigured systems in the DMZ or external network, provide windows of opportunity for an attacker. Common types of vulnerable software include unpatched operating systems or services (e.g FTP, Telnet, SMTP, SNMP) running on open ports that the attacker has identified. Attackers usually begin probing for vulnerable software once the external network has been port scanned and potential targets have been revealed.

Low

Typical severity

Per MITRE

Not rated

Likelihood of attack

Per MITRE

Related weaknesses

CWEs this targets

Detailed

Abstraction

MITRE classification

CAPEC-310: Scanning for Vulnerable Software

Overview

What the attacker needs

Prerequisites

Skills required

Resources required

Consequences

Frequently asked questions

What is CAPEC-310?

What weaknesses does CAPEC-310 target?

How severe is CAPEC-310?

References

Defend against CAPEC-310