BaseDraft

CWE-301Reflection Attack in an Authentication Protocol

Category: auth

Description

Simple authentication protocols are subject to reflection attacks if a malicious user can use the target machine to impersonate a trusted user.

Common consequences· 1

  • Access Control — Gain Privileges or Assume Identity
    The primary result of reflection attacks is successful authentication with a target machine -- as an impersonated user.

Potential mitigations· 2

  • [Architecture and Design]Use different keys for the initiator and responder or of a different type of challenge for the initiator and responder.
  • [Architecture and Design]Let the initiator prove its identity before proceeding.

Related CAPEC attack patterns· 1

CAPEC-90

References

  1. https://cwe.mitre.org/data/definitions/301.html

Exploits (incoming)1

TypeTargetConfidenceTier
AttackPatternReflection Attack in Authentication Protocolcapec-90100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Reflection Attack in Authentication Protocol
CWE
Authentication Bypass by Spoofing
CWE
Authentication Bypass by Capture-replay
CWE
Authentication Bypass by Assumed-Immutable Data
CWE
Authentication Bypass by Primary Weakness
CAPEC
Authentication Abuse
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.