CWE-294Authentication Bypass by Capture-replay

PUBLISHEDweakness recordHigh
released 2006-07-19 · last modified 2025-12-11

Metadata

CWE ID:
CWE-294
摘要:
Base
结构:
Simple
状态:
Incomplete
发布日期:
2006-07-19
更新日期:
2025-12-11

名称

Authentication Bypass by Capture-replay

描述

A capture-replay flaw exists when the design of the product makes it possible for a malicious user to sniff network traffic and bypass authentication by replaying it to the server in question to the same effect as the original message (or with minor changes).

Capture-replay attacks are common and can be difficult to defeat without cryptography. They are a subset of network injection attacks that rely on observing previously-sent valid commands, then changing them slightly if necessary and resending the same commands to the server.

常见后果

范围:
Access Control
影响:
Gain Privileges or Assume Identity
注释:
Messages sent with a capture-relay attack allow access to resources which are not otherwise accessible without proper authentication.

相关 CWE