Home > CAPEC List > CAPEC-375: WASC-42 - Abuse of Functionality (Version 3.0)  

CAPEC-375: WASC-42 - Abuse of Functionality

Category ID: 375
Status: Draft
+ Summary
This category is related to the WASC Threat Classification 2.0 item Abuse of Functionality
+ Membership
MemberOfViewView - A view in CAPEC represents a perspective with which one might look at the collection of attack patterns defined within CAPEC. There are three different types of views: graphs, explicit slices, and implicit slices.333WASC Threat Classification 2.0
HasMemberCategoryCategory - A category in CAPEC is a collection of attack patterns based on some common characteristic. More specifically, it is an aggregation of attack patterns based on effect/intent (as opposed to actions or mechanisms, such an aggregation would be a meta attack pattern). An aggregation based on effect/intent is not an actionable attack and as such is not a pattern of attack behavior. Rather, it is a grouping of patterns based on some common criteria.210Abuse Existing Functionality
+ References
[REF-318] "WASC Threat Classification 2.0". WASC-42 - Abuse of Functionality. The Web Application Security Consortium (WASC). 2010. <http://projects.webappsec.org/Abuse-of-Functionality>.
+ Content History
Submission DateSubmitterOrganization
2014-06-23CAPEC Content TeamThe MITRE Corporation
Modification DateModifierOrganization
2017-08-04CAPEC Content TeamThe MITRE Corporation
Updated Relationships

More information is available — Please select a different filter.
Page Last Updated or Reviewed: July 31, 2018