CAPEC-540: Overread Buffers

An adversary attacks a target by providing input that causes an application to read beyond the boundary of a defined buffer. This typically occurs when a value influencing where to start or stop reading is set to reflect positions outside of the valid memory location of the buffer. This type of attack may result in exposure of sensitive information, a system crash, or arbitrary code execution.

High

Typical severity

Per MITRE

Low

Likelihood of attack

Per MITRE

Related weaknesses

CWEs this targets

Standard

Abstraction

MITRE classification

Overview

CAPEC-540 (Overread Buffers) is a standard-level attack pattern catalogued by MITRE in the Common Attack Pattern Enumeration and Classification (CAPEC). It describes a recurring method attackers use to exploit software weaknesses.

CAPEC-540: Overread Buffers

Overview

How the attack works

What the attacker needs

Prerequisites

Consequences

Frequently asked questions

What is CAPEC-540?

How does a Overread Buffers attack work?

What weaknesses does CAPEC-540 target?

How severe is CAPEC-540?

References

Defend against CAPEC-540

Overview

How the attack works

What the attacker needs

Prerequisites

Consequences

Related weaknesses

Related attack patterns

Parent

Frequently asked questions

What is CAPEC-540?

How does a Overread Buffers attack work?

What weaknesses does CAPEC-540 target?

How severe is CAPEC-540?

References

Defend against CAPEC-540