Detailedlikelihood: Highseverity: Very HighDraft
CAPEC-275DNS Rebinding
Abstraction
Detailed
Status
Draft
Likelihood
High
Severity
Very High
Description
An adversary serves content whose IP address is resolved by a DNS server that the adversary controls. After initial contact by a web browser (or similar client), the adversary changes the IP address to which its name resolves, to an address within the target organization that is not publicly accessible. This allows the web browser to examine this internal address on behalf of the adversary.
Related weaknesses· 1
Related attack patterns· 1
Exploits1
| Type | Target | Confidence | Tier |
|---|---|---|---|
| Weakness | Reliance on Reverse DNS Resolution for a Security-Critical Actioncwe-350 | 100% | live |
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.