CINXE.COM

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <?xml version="1.0"?> <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"> <head> <meta http-equiv="content-type" content="text/html; charset=utf-8" /> <meta name="description" content="Common Attack Pattern Enumeration and Classification (CAPEC) is a list of software weaknesses." /> <meta http-equiv="X-UA-Compatible" content="IE=Edge"> <link rel="shortcut icon" href="/favicon.ico" /> <link href="/css/main.css?version=3.6.102121" rel="stylesheet" type="text/css" />  <script src="/includes/jquery.js" language="JavaScript" type="text/javascript"></script> <script src="/includes/capec_minimizer.js" language="JavaScript" type="text/javascript"></script> <script src="/includes/browserheight.js" language="JavaScript" type="text/javascript"></script> <script src="/includes/cookie.js" language="Javascript" type="text/javascript"></script> <script src=https://cmp.osano.com/AzyhULTdPkqmy4aDN/a02172fb-4011-47ed-b5ff-3ae82caa92f9/osano.js></script> <link href="/css/print.css?version=1.0" rel="stylesheet" media="print" type="text/css" /> <noscript> <style> #script { visibility:collapse; visibility:hidden; font-size:0px; height:0px; width:0px } #noscript { visibility:visible; font-size:inherit; height:inherit; width:inherit} </style> </noscript> <title>CAPEC - CAPEC-576: Group Permission Footprinting (Version 3.9) </title> </head> <body bgcolor="#eeeeee" onload="onloadCookie()"> <div style="background-color:#ffffff;"> <a name="top" id="top"></a> <div id="MastHead"> <table width="100%" border="0" cellspacing="0" cellpadding="0" summary="Masthead Table"> <tr> <th style="width:70%"/> <th style="width:30%"/> </tr> <tr> <td align="left" style="padding:20px 10px 10px 20px" valign="middle" nowrap="nowrap"> <a href="/index.html" style="color:#32498D; text-decoration:none"> <div> <img src="/images/capec_logo_new2.gif" width="160" height="55" style="float:left;border:0;margin-right:6px" alt="CAPEC" /> <h1 style="color:#edef97;font-size:1.2em;font-family:'Verdana',sans-serif;text-shadow: 2px 2px #000;margin: .1em auto">Common Attack Pattern Enumeration and Classification</h1> <p style="color:#fff;font-size:1em;text-shadow: 2px 2px #000;margin:.2em auto 0 auto">A Community Resource for Identifying and Understanding Attacks</p> </a> </div> </td> <td> <div style="float:right;padding-top:0px;padding-right:14px;padding-bottom:0px;"><a href="/about/new_to_capec.html" title="New to CAPEC? Start Here"><img src="/images/new_to_capec.png" width=100" height="100" border="0" alt="New to CAPEC? Start Here" style="vertical-align:top"/></a></div> </td> </tr> </table> </div> <div id="HeaderBar" class="noprint"> <table width="100%" border="0" cellpadding="0" cellspacing="0" summary="Breadcrumbs and Search Table"> <tr> <td width="100%" valign="middle" align="left" style="padding-left:10px; font-size:75%;"> <a href="/" >Home</a> > <a href="/data/index.html" >CAPEC List</a> > CAPEC-576: Group Permission Footprinting (Version 3.9)   </td> <td valign="middle" align="right" nowrap="nowrap" style="padding-right:12px"> <div class="noprint" style="text-align:right"> <form action="/cgi-bin/jumpmenu.cgi" style="margin-bottom:0.1em;vertical-align:center;"> <label for="id" style="padding-right:5px">ID Lookup:</label> <input id="id" name="id" type="text" style="width:50px; font-size:80%" maxlength="10" /> <input value="Go" style="padding: 0px; font-size:80%" type="submit" /> </form> </div> </td> </tr> </table> </div>  <div class="yesprint"> <hr width="100%" size="1" style="clear:both" color="#000000" /> </div> <div class="topnav"> <ul> <li><a href="/index.html">Home</a></li> <li> <div class="dropdown"> <a href="/about/index.html"><button class="dropbtn">About</button></a> <div class="dropdown-content"> <a href="/about/index.html">Overview</a> <a href="/about/board.html">Board</a> <a href="/about/glossary.html">Glossary</a> <a href="/about/use_cases.html">Use Cases</a> <a href="/about/resources.html">Resources</a> <a href="/about/documents.html">Documents</a> <a href="/about/faq.html">FAQs</a> <a href="/about/new_to_capec.html">New to CAPEC?</a> </div> </div> </li> <li> <div class="dropdown"> <a href="/data/index.html"><button class="dropbtn">CAPEC List</button></a> <div class="dropdown-content"> <a href="/data/index.html">Latest Version</a> <a href="/data/downloads.html">Downloads</a> <a href="/data/reports.html">Reports</a> <a href="/data/archive.html">Archive</a> </div> </div> </li> <li> <div class="dropdown"> <a href="/community/index.html"><button class="dropbtn">Community</button></a> <div class="dropdown-content"> <a href="/community/index.html">Community</a> <a href="/community/citations.html">Citations</a> <a href="/community/usage.html">Organization Usage</a> <a href="/community/related.html">Related Activities</a> <a href="/community/registration.html">Discussion List</a> <a href="https://www.mail-archive.com/capec-research-list@mitre.org/" target="_blank" rel="noopener noreferrer">Discussion Archives</a> <a href="/about/documents.html#capec_user_summit">CAPEC User Summit</a> </div> </div> </li> <li> <div class="dropdown"> <a href="/news/index.html"><button class="dropbtn">News</button></a> <div class="dropdown-content"> <a href="/news/index.html">Current News</a> <a href="https://twitter.com/CweCapec" target="_blank" rel="noopener noreferrer">CAPEC on Twitter<img src="/images/twitter_sm.png" border="0" title="Twitter" style="position:relative; vertical-align:bottom; padding-left:3px; top:-1px"></a> <a href="https://www.linkedin.com/showcase/cve-cwe-capec" target="_blank" rel="noopener noreferrer">CAPEC on LinkedIn<img src="/images/linkedin_sm.jpg" alt="LinkedIn" width="12" height="12" style="position:relative; vertical-align:bottom; padding-left:3px; top:-1px"></a> <a href="https://medium.com/@CWE_CAPEC" target="_blank" rel="noopener noreferrer">CAPEC Blog <img src="/images/medium.png" alt="Medium" width="12" height="12" style="position:relative; vertical-align:bottom; padding-left:3px; top:-1px"></a> <a href="https://outofbounds.buzzsprout.com/" target="_blank" rel="noopener noreferrer">CAPEC Podcast<img src="/images/out_of_bounds_read_logo_B_W.png" alt="Out of Bounds Read Podcast" width="15" height="15" style="position:relative; vertical-align:bottom; padding-left:3px; top:-1px"></a> <a href="https://www.youtube.com/channel/UCpY9VIpRmFK4ebD6orssifA" target="_blank" rel="noopener noreferrer">CAPEC on YouTube<img src="/images/youtube.png" alt="YouTube" width="12" height="12" style="position:relative; vertical-align:bottom; padding-left:3px; top:-1px"></a> <a href="/news/archives/index.html">News Archive</a> </div> </div> </li> <li style="border-color:#aaaaaa"><a href="/find/index.html">Search</a></li> </ul> </div> <table width="100%" border="0" cellspacing="0" cellpadding="0" id="MainPane"> <tr>  <td valign="top" rowspan="2" id="LeftPane">  <script type="text/javascript">browserheight();</script> </td>  <td style="height:1px"></td>  <td valign="top" align="center" rowspan="2" nowrap="nowrap" id="RightPane"> </td>  </tr> <tr>  <td valign="top" id="Contentpane" width="100%" style="word-wrap:break-word"> <script type="text/javascript"> $("#Contentpane").css('max-width', ($(window).width()-230) + 'px'); </script> <script src="/includes/nav.js" language="JavaScript" type="text/javascript" /></script> <noscript> <style>div.collapseblock { display:inline} </style> </noscript> <html xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xhtml="http://www.w3.org/1999/xhtml" encoding="iso-8859-1">  <a xmlns:cwe="http://cwe.mitre.org/cwe-6" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsd="http://www.w3.org/2001/XMLSchema" name="576"></a><div xmlns:cwe="http://cwe.mitre.org/cwe-6" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsd="http://www.w3.org/2001/XMLSchema" class="noprint"><table cellpadding="0" cellspacing="0" border="0" width="100%"><tr><td valign="bottom"><h2 style="margin:0px 0px 2px 0px;">CAPEC-576: Group Permission Footprinting</h2></td></tr></table></div><div xmlns:cwe="http://cwe.mitre.org/cwe-6" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsd="http://www.w3.org/2001/XMLSchema" id="CAPECDefinition"><div class="title"><div class="status"><table width="100%" border="0" cellpadding="0" cellspacing="0"><tr><td valign="top" align="left" width="33%" nowrap><div style="font-weight:bold">Attack Pattern ID: 576</div><div style="font-size:80%;"><div><b>Abstraction: <span class="Standard">Standard</span></b></div></div></td><td valign="top" align="center"></td><td valign="top" align="right"></td></tr></table></div></div> <div id="Filter_Menu" style="padding-bottom:10px;"> <div style="font-size:75%; color:#000066; font-style:italic; display:inline">View customized information: </div> <div class="buttonlist" style="display:inline;"> <button id="ConceptualButton" type="button" onclick="buttonSkinSelector('conceptual');" title="For users who are interested in more notional aspects of a weakness. Example: educators, technical writers, and project/program managers.">Conceptual</button> <button id="OperationalButton" type="button" onclick="buttonSkinSelector('operational');" title="For users who are concerned with the practical application and details about the nature of a weakness and how to prevent it from happening. Example: tool developers, security researchers, pen-testers, incident response analysts.">Operational</button> <button id="MappingFriendlyButton" type="button" onclick="buttonSkinSelector('mappingfriendly');" title="For users who are mapping an issue to CWE/CAPEC IDs, i.e., finding the most appropriate CWE for a specific issue (e.g., a CVE record). Example: tool developers, security researchers.">Mapping-Friendly</button> <button id="CompleteButton" type="button" onclick="buttonSkinSelector('complete');" title="For users who wish to see all available information for the CWE/CAPEC entry">Complete</button> </div> </div> <div id="Description"><div class="heading"><span id="script"><a href="javascript:toggleblocksOC('576_Description');"><img id="ocimg_576_Description" src="/images/head_more.gif" border="0" style="background-color: #DCDCC5" alt="+"></a> </span>Description</div><div name="oc_576_Description" id="oc_576_Description" class="expandblock"><div class="detail"><div class="indent">An adversary exploits functionality meant to identify information about user groups and their permissions on the target system to an authorized user. By knowing what users/permissions are registered on the target system, the adversary can inform further and more targeted malicious behavior. An example Windows command which can list local groups is "net localgroup". </div></div></div></div><div id="Likelihood_Of_Attack"><div class="heading"><span id="script"><a href="javascript:toggleblocksOC('576_Likelihood Of Attack');"><img id="ocimg_576_Likelihood Of Attack" src="/images/head_more.gif" border="0" style="background-color: #DCDCC5" alt="+"></a> </span>Likelihood Of Attack</div><div name="oc_576_Likelihood Of Attack" id="oc_576_Likelihood Of Attack" class="expandblock"><div class="detail"><div class="indent"><div id="Detail"><p>Low</p></div></div></div></div></div><div id="Typical_Severity"><div class="heading"><span id="script"><a href="javascript:toggleblocksOC('576_Typical Severity');"><img id="ocimg_576_Typical Severity" src="/images/head_more.gif" border="0" style="background-color: #DCDCC5" alt="+"></a> </span>Typical Severity</div><div name="oc_576_Typical Severity" id="oc_576_Typical Severity" class="expandblock"><div class="detail"><div class="indent"><div id="Detail"><p>Low</p></div></div></div></div></div><div id="Relationships"><div class="heading"><span id="script"><a href="javascript:toggleblocksOC('576_Relationships');"><img id="ocimg_576_Relationships" src="/images/head_more.gif" border="0" style="background-color: #DCDCC5" alt="+"></a> </span>Relationships</div><div name="oc_576_Relationships" id="oc_576_Relationships" class="expandblock"><div class="detail"><div class="indent"><span class="section tool"><img src="/images/dictionary.gif" alt="Section Help"><span class="tip">This table shows the other attack patterns and high level categories that are related to this attack pattern. These relationships are defined as ChildOf and ParentOf, and give insight to similar items that may exist at higher and lower levels of abstraction. In addition, relationships such as CanFollow, PeerOf, and CanAlsoBe are defined to show similar attack patterns that the user may want to explore.</span></span><div id="relevant_table"><div class="tabledetail"><div class="indent"><div xmlns:saxon="http://saxon.sf.net/" xmlns:xalan="http://xml.apache.org/xalan" class="tabledetail"><table width="98%" cellpadding="0" cellspacing="0" border="0" id="Detail"><tr><th valign="top" width="110px">Nature</th><th valign="top" width="40px">Type</th><th valign="top" width="50px">ID</th><th valign="top">Name</th></tr><tbody><tr class="primary Attack_Pattern parentchild"><td valign="top">ChildOf</td><td valign="top" nowrap class="right" align="center" style="padding-top:1px"><span class="tool"><img src="/images/icons/meta_ap.gif" alt="Meta Attack Pattern"><span class="tip">Meta Attack Pattern - A meta level attack pattern in CAPEC is a decidedly abstract characterization of a specific methodology or technique used in an attack. A meta attack pattern is often void of a specific technology or implementation and is meant to provide an understanding of a high level approach. A meta level attack pattern is a generalization of related group of standard level attack patterns. Meta level attack patterns are particularly useful for architecture and design level threat modeling exercises.</span></span></td><td valign="top">169</td><td valign="top"><a href="/data/definitions/169.html" target="_blank" rel="noopener noreferrer">Footprinting</a></td></tr></tbody></table></div></div></div></div><span class="section tool"><img src="/images/dictionary.gif" alt="Section Help"><span class="tip">This table shows the views that this attack pattern belongs to and top level categories within that view.</span></span><div class="indent" style="padding-bottom:10px"><table cellpadding="0" cellspacing="0" border="0" id="Detail" style="margin-right:auto;"><tr><th valign="top" width="50%">View Name</th><th valign="top" width="50%">Top Level Categories</th></tr><tr><td><a href="http://capec.mitre.org/data/definitions/3000.html" target="_blank" rel="noopener noreferrer">Domains of Attack</a></td><td><a href="http://capec.mitre.org/data/definitions/513.html" target="_blank" rel="noopener noreferrer">Software</a></td></tr><tr><td><a href="http://capec.mitre.org/data/definitions/1000.html" target="_blank" rel="noopener noreferrer">Mechanisms of Attack</a></td><td><a href="http://capec.mitre.org/data/definitions/118.html" target="_blank" rel="noopener noreferrer">Collect and Analyze Information</a></td></tr></table></div></div></div></div></div><div id="Prerequisites"><div class="heading"><span id="script"><a href="javascript:toggleblocksOC('576_Prerequisites');"><img id="ocimg_576_Prerequisites" src="/images/head_more.gif" border="0" style="background-color: #DCDCC5" alt="+"></a> </span>Prerequisites</div><div name="oc_576_Prerequisites" id="oc_576_Prerequisites" class="expandblock"><div class="detail"><div class="indent"><div id="Grouped"><table width="98%" cellpadding="0" cellspacing="0" border="0" class="Detail"> <tr><td valign="top">The adversary must have gained access to the target system via physical or logical means in order to carry out this attack. </td></tr> </table></div></div></div></div></div><div id="Consequences"><div class="heading"><span id="script"><a href="javascript:toggleblocksOC('576_Consequences');"><img id="ocimg_576_Consequences" src="/images/head_more.gif" border="0" style="background-color: #DCDCC5" alt="+"></a> </span>Consequences</div><div name="oc_576_Consequences" id="oc_576_Consequences" class="expandblock"><div class="tabledetail"><div class="indent"><span class="section tool"><img src="/images/dictionary.gif" alt="Section Help"><span class="tip">This table specifies different individual consequences associated with the attack pattern. The Scope identifies the security property that is violated, while the Impact describes the negative technical impact that arises if an adversary succeeds in their attack. The Likelihood provides information about how likely the specific consequence is expected to be seen relative to the other consequences in the list. For example, there may be high likelihood that a pattern will be used to achieve a certain impact, but a low likelihood that it will be exploited to achieve a different impact.</span></span><table style="max-width:100%; min-width:98%" cellpadding="0" cellspacing="0" border="0" id="Detail"><tr><th valign="middle" width="135px" nowrap>Scope</th><th valign="middle">Impact</th><th valign="middle" width="100px" nowrap>Likelihood</th></tr><tr><td valign="top"><div>Confidentiality</div></td><td valign="top"><div>Other</div></td><td valign="top"></td></tr><tr><td valign="top"><div>Confidentiality</div><div>Access Control</div><div>Authorization</div></td><td valign="top"><div>Bypass Protection Mechanism</div><div>Hide Activities</div></td><td valign="top"></td></tr></table></div></div></div></div><div id="Mitigations"><div class="heading"><span id="script"><a href="javascript:toggleblocksOC('576_Mitigations');"><img id="ocimg_576_Mitigations" src="/images/head_more.gif" border="0" style="background-color: #DCDCC5" alt="+"></a> </span>Mitigations</div><div name="oc_576_Mitigations" id="oc_576_Mitigations" class="expandblock"><div class="detail"><div class="indent"><div id="Grouped"><table width="98%" cellpadding="0" cellspacing="0" border="0" class="Detail"> <tr><td valign="top">Identify programs (such as "net") that may be used to enumerate local group permissions and block them by using a software restriction Policy or tools that restrict program execution by using a process allowlist. </td></tr> </table></div></div></div></div></div><div id="Related_Weaknesses"><div class="heading"><span id="script"><a href="javascript:toggleblocksOC('576_Related Weaknesses');"><img id="ocimg_576_Related Weaknesses" src="/images/head_more.gif" border="0" style="background-color: #DCDCC5" alt="+"></a> </span>Related Weaknesses</div><div name="oc_576_Related Weaknesses" id="oc_576_Related Weaknesses" class="expandblock"><div class="tabledetail"><div class="indent"><span class="section tool"><img src="/images/dictionary.gif" alt="Section Help"><span class="tip">A Related Weakness relationship associates a weakness with this attack pattern. Each association implies a weakness that must exist for a given attack to be successful. If multiple weaknesses are associated with the attack pattern, then any of the weaknesses (but not necessarily all) may be present for the attack to be successful. Each related weakness is identified by a CWE identifier.</span></span><table style="max-width:100%; min-width:98%" cellpadding="0" cellspacing="0" border="0" id="Detail"><tr><th valign="top" nowrap>CWE-ID</th><th valign="top" width="100%">Weakness Name</th></tr> <tr><td valign="top"><a href="http://cwe.mitre.org/data/definitions/200.html" target="_blank" rel="noopener noreferrer">200</a></td><td valign="top">Exposure of Sensitive Information to an Unauthorized Actor</td></tr> </table></div></div></div></div><div id="Taxonomy_Mappings"><div class="heading"><span id="script"><a href="javascript:toggleblocksOC('576_Taxonomy Mappings');"><img id="ocimg_576_Taxonomy Mappings" src="/images/head_more.gif" border="0" style="background-color: #DCDCC5" alt="+"></a> </span>Taxonomy Mappings</div><div name="oc_576_Taxonomy Mappings" id="oc_576_Taxonomy Mappings" class="expandblock"><div class="tabledetail"><div class="indent"><span class="section tool"><img src="/images/dictionary.gif" alt="Section Help"><span class="tip">CAPEC mappings to ATT&CK techniques leverage an inheritance model to streamline and minimize direct CAPEC/ATT&CK mappings. Inheritance of a mapping is indicated by text stating that the parent CAPEC has relevant ATT&CK mappings. Note that the ATT&CK Enterprise Framework does not use an inheritance model as part of the mapping to CAPEC.</span></span><div class="tax_title">Relevant to the ATT&CK taxonomy mapping (also see <a href="/data/definitions/169.html" target="_blank" rel="noopener noreferrer">parent</a>)</div><table style="max-width:100%; min-width:98%" cellpadding="0" cellspacing="0" border="0" id="Detail"><tr><th valign="top" nowrap>Entry ID</th><th valign="top" width="100%">Entry Name</th></tr><tr><td valign="top"><a href="https://attack.mitre.org/wiki/Technique/T1069" target="_blank" rel="noopener noreferrer">1069</a></td><td valign="top">Permission Groups Discovery</td></tr><tr><td valign="top"><a href="https://attack.mitre.org/wiki/Technique/T1615" target="_blank" rel="noopener noreferrer">1615</a></td><td valign="top">Group Policy Discovery</td></tr></table></div></div></div></div><div id="Content_History"><div class="heading"><span id="script"><a href="javascript:toggleblocksOC('576_Content History');"><img id="ocimg_576_Content History" src="/images/head_less.gif" border="0" style="background-color: #DCDCC5" alt="+"></a> </span>Content History</div><div name="oc_576_Content History" id="oc_576_Content History" class="collapseblock"><div class="tabledetail"><div class="indent"><div style="margin-top: 10px"><table style="max-width:100%; min-width:98%" cellpadding="0" cellspacing="0" border="0" ID="Detail"><tbody class="Submissions"><tr><th valign="top" colspan="3" class="title">Submissions</th></tr><tr><th valign="top">Submission Date</th><th valign="top" nowrap>Submitter</th><th valign="top" nowrap>Organization</th></tr><tr><td valign="top" nowrap rowspan="2" style="border-bottom:1px solid #BAC5E3">2015-11-09<div style="display:inline-block; padding-left:2em;">(Version 2.7)</div></td><td valign="top">CAPEC Content Team</td><td valign="top">The MITRE Corporation</td></tr><tr><td valign="top" colspan="2" style="border-bottom:1px solid #BAC5E3; background-color:#eeeeee"></td></tr></tbody><tbody class="Modifications"><tr><th valign="top" colspan="3" class="title">Modifications</th></tr><tr><th valign="top">Modification Date</th><th valign="top" nowrap>Modifier</th><th valign="top" nowrap>Organization</th></tr><tr><td valign="top" nowrap rowspan="2" style="border-bottom:1px solid #BAC5E3">2018-07-31<div style="display:inline-block; padding-left:2em;">(Version 2.12)</div></td><td valign="top">CAPEC Content Team</td><td valign="top">The MITRE Corporation</td></tr><tr><td valign="top" colspan="2" style="border-bottom:1px solid #BAC5E3; background-color:#eeeeee">Updated Attack_Motivation-Consequences, Attack_Prerequisites, Description Summary, References, Related_Weaknesses, Typical_Likelihood_of_Exploit, Typical_Severity</td></tr><tr><td valign="top" nowrap rowspan="2" style="border-bottom:1px solid #BAC5E3">2019-04-04<div style="display:inline-block; padding-left:2em;">(Version 3.1)</div></td><td valign="top">CAPEC Content Team</td><td valign="top">The MITRE Corporation</td></tr><tr><td valign="top" colspan="2" style="border-bottom:1px solid #BAC5E3; background-color:#eeeeee">Updated Related_Attack_Patterns</td></tr><tr><td valign="top" nowrap rowspan="2" style="border-bottom:1px solid #BAC5E3">2019-09-30<div style="display:inline-block; padding-left:2em;">(Version 3.2)</div></td><td valign="top">CAPEC Content Team</td><td valign="top">The MITRE Corporation</td></tr><tr><td valign="top" colspan="2" style="border-bottom:1px solid #BAC5E3; background-color:#eeeeee">Updated @Abstraction</td></tr><tr><td valign="top" nowrap rowspan="2" style="border-bottom:1px solid #BAC5E3">2020-07-30<div style="display:inline-block; padding-left:2em;">(Version 3.3)</div></td><td valign="top">CAPEC Content Team</td><td valign="top">The MITRE Corporation</td></tr><tr><td valign="top" colspan="2" style="border-bottom:1px solid #BAC5E3; background-color:#eeeeee">Updated Mitigations</td></tr><tr><td valign="top" nowrap rowspan="2" style="border-bottom:1px solid #BAC5E3">2022-09-29<div style="display:inline-block; padding-left:2em;">(Version 3.8)</div></td><td valign="top">CAPEC Content Team</td><td valign="top">The MITRE Corporation</td></tr><tr><td valign="top" colspan="2" style="border-bottom:1px solid #BAC5E3; background-color:#eeeeee">Updated Taxonomy_Mappings</td></tr></tbody></table></div></div></div></div></div></div></html> <div id="More_Message"> <div style="background-color:#33332C; padding:2px; color:#ffffff; font-size:95%; text-align:center" >More information is available — Please select a different filter.</div></div> </td>  </tr> </table> <div id="FootPane" class="noprint"> <div id="footbar"> <b>Page Last Updated or Reviewed: </b> July 31, 2018 </div> <div class="Footer noprint"> <table width="100%" cellpadding="0" cellspacing="0" border="0" class="ltgreybackground" style="clear:both" summary="Footer Table"> <tr> <td colspan="3" id="line"><div class="line"> </div></td> </tr> <tr> <td valign="middle" nowrap="nowrap"> <div id="footerlinks" class="footlogo"> <a href="https://www.mitre.org" target="_blank"><img src="/images/mitre_logo.gif" height="36" border="0" alt="MITRE"/></a> </div> </td> <td width="100%" valign="top" style="padding:6px 0px;"> <div id="footerlinks"> <a href="/sitemap.html">Site Map</a> | <a href="/about/termsofuse.html">Terms of Use</a> | <a href="#" onclick="Osano.cm.showDrawer('osano-cm-dom-info-dialog-open')">Manage Cookies</a> | <a target="_blank" href="/about/cookie_notice.html">Cookie Notice</a> | <a target="_blank" href="https://cwe.mitre.org/about/privacy_policy.html">Privacy Policy</a> | <a href="mailto:capec@mitre.org">Contact Us</a> | <a target="_blank" href="https://twitter.com/CweCapec"><img src="/images/twitter.jpg" width="20" height="20" style="border:0;vertical-align:right;" alt="CAPEC on Twitter" title="CAPEC on Twitter"></a> <a target="_blank" href="https://www.linkedin.com/showcase/cve-cwe-capec"><img src="/images/linkedin_sm.jpg" width="20" height="20" style="border:0;vertical-align:right;" alt="CAPEC on LinkedIn" title="CAPEC on LinkedIn"></a> <a target="_blank" href="https://www.youtube.com/channel/UCpY9VIpRmFK4ebD6orssifA"><img src="/images/youtube.png" width="20" height="20" style="border:0;vertical-align:right;" alt="CAPEC on YouTube" title="CAPEC on YouTube"></a> <a target="_blank" href="https://outofbounds.buzzsprout.com/"><img src="/images/out_of_bounds_read_sm.png" width="20" height="20" style="border:0;vertical-align:right;" alt="CAPEC Out-of-Bounds-Read Podcast" title="CAPEC Out-of-Bounds-Read Podcast"></a> <a target="_blank" href="https://medium.com/@CWE_CAPEC"><img src="/images/medium.png" width="20" height="20" style="border:0;vertical-align:right;" alt="CAPEC Blog on Medium" title="CAPEC Blog on Medium"></a> </div> <p>Use of the Common Attack Pattern Enumeration and Classification (CAPEC), and the associated references from this website are subject to the <a href="/about/termsofuse.html">Terms of Use</a>. Copyright © 2007–2025, The MITRE Corporation. CAPEC and the CAPEC logo are trademarks of The MITRE Corporation.</p> </td> <td valign="middle" nowrap="nowrap"> <div id="footerlinks" class="footlogo"> <a href="https://www.dhs.gov/science-and-technology/hssedi" target="_blank" rel="noopener noreferrer"><img src="/images/hssedi.png" height="36" border="0" alt="HSSEDI" title="HSSEDI"/></a> </div> </td> </tr> </table> </div> </div>  <script src=https://cmp.osano.com/AzyhULTdPkqmy4aDN/a02172fb-4011-47ed-b5ff-3ae82caa92f9/osano.js></script>  <script async src="https://www.googletagmanager.com/gtag/js?id=G-SB6E7FR4V4"></script> <script> window.dataLayer = window.dataLayer || []; function gtag(){dataLayer.push(arguments);} gtag('js', new Date()); gtag('config', 'G-SB6E7FR4V4'); </script> </body> </html>