CAPEC browsing - CVE-Search

CAPEC Details

Name

Port Scanning

Likelyhood of attack	Typical severity
Low	Low

Summary

An adversary uses a combination of techniques to determine the state of the ports on a remote target. Any service or application available for TCP or UDP networking will have a port open for communications over the network.

Prerequisites

The adversary requires logical access to the target's network in order to carry out this type of attack.

Solutions

Related Weaknesses

CWE ID	Description
CWE-200	Exposure of Sensitive Information to an Unauthorized Actor

Related CAPECS

CAPEC ID	Description
CAPEC-169	An adversary engages in probing and exploration activities to identify constituents and properties of the target. Footprinting is a general term to describe a variety of information gathering techniques, often used by attackers in preparation for some attack. It consists of using tools to learn as much as possible about the composition, configuration, and security mechanisms of the targeted application, system or network. Information that might be collected during a footprinting effort could include open ports, applications and their versions, network topology, and similar information. Although similar to fingerprinting, footprinting aims to get a more holistic view of a system or network, whereas fingerprinting is more targeted to a specific application or operating system. While footprinting is not intended to be damaging (although certain activities, such as network scans, can sometimes cause disruptions to vulnerable applications inadvertently) it may often pave the way for more damaging attacks.

Taxonomy: ATTACK

Entry ID	Entry Name
1046	Network Service Scanning