General Information

Temporal Session Race Conditions via Line Targeted ADoS

Variants:
Direct 

Vector Type:
Attack

Relevance:
Generic

Layer:
Application-Level

Platforms:
Any

Target Type:
Application

Affected Mechanisms:
Session Management, Secure Design

Invented In:
15/09/2011

Added In:
25/12/2014


Vector Operation Method:
Application denial of service attacks that affect a single line of code can be used to extend the timeframe available for exploiting temporary session attributes in a race condition scenario.


Direct Variant:

Temporal Session Race Conditions

Also Known As:
Temporal Session Race Conditions via Line Targeted ADoS

Typical Severity:
Major

Resources:

White Papers:

Learn More: