Detailedlikelihood: Mediumseverity: HighDraft

CAPEC-4Using Alternative IP Address Encodings

Abstraction
Detailed
Status
Draft
Likelihood
Medium
Severity
High

Description

This attack relies on the adversary using unexpected formats for representing IP addresses. Networked applications may expect network location information in a specific format, such as fully qualified domains names (FQDNs), URL, IP address, or IP Address ranges. If the location information is not validated against a variety of different possible encodings and formats, the adversary can use an alternate format to bypass application access control.

Related weaknesses· 2

CWE-291CWE-173

Related attack patterns· 1

CAPEC-267 (ChildOf)

Exploits2

TypeTargetConfidenceTier
WeaknessReliance on IP Address for Authenticationcwe-291100%live
WeaknessImproper Handling of Alternate Encodingcwe-173100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
URL Encoding
CAPEC
Using Slashes and URL Encoding Combined to Bypass Validation Logic
CAPEC
Using Slashes in Alternate Encoding
CAPEC
Leverage Alternate Encoding
CAPEC
Using Unicode Encoding to Bypass Validation Logic
CAPEC
Using UTF-8 Encoding to Bypass Validation Logic
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.