CAPEC Related Weakness
Leveraging Active Man in the Middle Attacks to Bypass Same Origin Policy
CWE-300Channel Accessible by Non-Endpoint
Utilizing REST's Trust in the System Resource to Obtain Sensitive Data
CWE-287Improper Authentication
CWE-300Channel Accessible by Non-Endpoint
CWE-693Protection Mechanism Failure
CWE-724OWASP Top Ten 2004 Category A3 - Broken Authentication and Session Management
Man in the Middle Attack
CWE-287Improper Authentication
CWE-290Authentication Bypass by Spoofing
CWE-294Authentication Bypass by Capture-replay
CWE-300Channel Accessible by Non-Endpoint
CWE-593Authentication Bypass: OpenSSL CTX Object Modified after SSL Objects are Created
CWE-724OWASP Top Ten 2004 Category A3 - Broken Authentication and Session Management
DNS Blocking
CWE-300Channel Accessible by Non-Endpoint
IP Address Blocking
CWE-300Channel Accessible by Non-Endpoint
WiFi MAC Address Tracking
CWE-201Exposure of Sensitive Information Through Sent Data
CWE-300Channel Accessible by Non-Endpoint
WiFi SSID Tracking
CWE-201Exposure of Sensitive Information Through Sent Data
CWE-300Channel Accessible by Non-Endpoint
Evil Twin Wi-Fi Attack
CWE-300Channel Accessible by Non-Endpoint
Back to Top