Dark Mode
Capec-456 Detail
Infected Memory
Standard Software Hardware Likelihood: Medium Typical Severity: High
Parents: 441
Children: 457 458
Threats: T79 T287 T337 T391 T406
An adversary inserts malicious logic into memory enabling them to achieve a negative impact. This logic is often hidden from the user of the system and works behind the scenes to achieve negative impacts. This pattern of attack focuses on systems already fielded and used in operation as opposed to systems that are still under development and part of the supply chain.
Not present
| External ID | Source | Link | Description |
|---|---|---|---|
| CAPEC-456 | capec | https://capec.mitre.org/data/definitions/456.html | |
| CWE-1257 | cwe | http://cwe.mitre.org/data/definitions/1257.html | |
| CWE-1260 | cwe | http://cwe.mitre.org/data/definitions/1260.html | |
| CWE-1274 | cwe | http://cwe.mitre.org/data/definitions/1274.html | |
| CWE-1312 | cwe | http://cwe.mitre.org/data/definitions/1312.html | |
| CWE-1316 | cwe | http://cwe.mitre.org/data/definitions/1316.html |
Not present
Not present
Not present
Not present
| Authorization |
|---|
| Execute Unauthorized Commands |
- A USB Memory stick has malicious logic inserted before shipping of the product allowing for infection of the host machine once inserted into the USB port.
- In 2007, approximately 1800 of Seagate's Maxtor Personal Storage 3200 drives were built under contract with an outside manufacturer and contained a virus that stole user passwords.