| Name |
IP Address Blocking |
|
| Likelyhood of attack |
Typical severity |
| Low |
High |
|
| Summary |
An adversary performing this type of attack drops packets destined for a target IP address. The aim is to prevent access to the service hosted at the target IP address. |
| Prerequisites |
This attack requires the ability to conduct deep packet inspection with an In-Path device that can drop the targeted traffic and/or connection. |
| Solutions | Have a large pool of backup IPs built into the application and support proxy capability in the application. |
| Related Weaknesses |
|
CWE ID
|
Description
|
| CWE-300 |
Channel Accessible by Non-Endpoint |
|
| Related CAPECS |
|
CAPEC ID
|
Description
|
| CAPEC-603 |
An adversary blocks the delivery of an important system resource causing the system to fail or stop working. |
|