Dark Mode
Capec-496 Detail
ICMP Fragmentation
Standard Communications Software
Parents: 130
Threats: T61 T64 T74 T77 T264 T265 T269 T282 T289 T308 T309 T374 T401
An attacker may execute a ICMP Fragmentation attack against a target with the intention of consuming resources or causing a crash. The attacker crafts a large number of identical fragmented IP packets containing a portion of a fragmented ICMP message. The attacker these sends these messages to a target host which causes the host to become non-responsive. Another vector may be sending a fragmented ICMP message to a target host with incorrect sizes in the header which causes the host to hang.
Not present
| External ID | Source | Link | Description |
|---|---|---|---|
| CAPEC-496 | capec | https://capec.mitre.org/data/definitions/496.html | |
| CWE-770 | cwe | http://cwe.mitre.org/data/definitions/770.html | |
| CWE-404 | cwe | http://cwe.mitre.org/data/definitions/404.html | |
| REF-425 | reference_from_CAPEC | http://www.sans.org/reading-room/whitepapers/threats/icmp-attacks-illustrated-477?show=icmp-attacks-illustrated-477&cat=threats | ICMP Attacks Illustrated |
Not present
- This type of an attack requires the target system to be running a vulnerable implementation of IP, and the attacker needs to ability to send arbitrary sized ICMP packets to the target.
Not present
Not present
Not present
Not present