CAPEC-131 Metadata
Likelihood of Attack
Medium
Typical Severity
Medium
Overview
Summary
An adversary utilizes a resource leak on the target to deplete the quantity of the resource available to service legitimate requests.
Prerequisites
The target must have a resource leak that the adversary can repeatedly trigger.
Potential Solutions / Mitigations
If possible, leverage coding language(s) that do not allow this weakness to occur (e.g., Java, Ruby, and Python all perform automatic garbage collection that releases memory for objects that have been deallocated). Memory should always be allocated/freed using matching functions (e.g., malloc/free, new/delete, etc.) Implement best practices with respect to memory management, including the freeing of all allocated resources at all exit points and ensuring consistency with how and where memory is freed in a function.
Related Weaknesses (CWE)
| CWE ID | Description |
|---|---|
| CWE-404 | Improper Resource Shutdown or Release |
Taxonomy Mappings
Taxonomy: ATTACK
| Entry ID | Entry Name |
|---|---|
| 1499 | Endpoint Denial of Service |
Taxonomy: WASC
| Entry ID | Entry Name |
|---|---|
| 10 | Denial of Service |
Stay Ahead of Attack Patterns
Understanding CAPEC patterns helps security professionals anticipate and thwart potential attacks. Leverage these insights to enhance threat modeling, strengthen your software development lifecycle, and train your security teams effectively.