CAPEC-572: Artificially Inflate File Sizes
An adversary modifies file contents by adding data to files for several reasons. Many different attacks could “follow” this pattern resulting in numerous outcomes. Adding data to a file could also result in a Denial of Service condition for devices with limited storage capacity.
Last updated
Overview
CAPEC-572 (Artificially Inflate File Sizes) is a standard-level attack pattern catalogued by MITRE in the Common Attack Pattern Enumeration and Classification (CAPEC). It describes a recurring method attackers use to exploit software weaknesses.
Consequences
What a successful CAPEC-572 attack can achieve.
Resource Consumption
Affects: Availability
Denial of Service
Modify Data
Affects: Integrity
Examples
An adversary could potentially increase file sizes on devices containing limited storage resources, such as SCADA or IOT devices, resulting in denial of service conditions.
Terminology & mappings
Mapped taxonomies
- ATTACK: Obfuscated Files or Information:Binary Padding (1027.001)
Frequently asked questions
Common questions about CAPEC-572.
- What is CAPEC-572?
- An adversary modifies file contents by adding data to files for several reasons. Many different attacks could “follow” this pattern resulting in numerous outcomes. Adding data to a file could also result in a Denial of Service condition for devices with limited storage capacity.
- How severe is CAPEC-572?
- MITRE rates CAPEC-572 as Medium severity with high likelihood of attack.
References
Attack-pattern data is sourced from the MITRE CAPEC catalog (v3.9). Weakness associations link to the corresponding CWE entries on RadicalNotion.AI.
Defend against CAPEC-572
Track the CVEs and weaknesses attackers exploit with this technique, with AI-written analysis and remediation guidance.