General Information

Authentication Bypass via Alternative IP Access

Variants:
Direct 

Also Known As:
Alternative IP Address Encodings

Vector Type:
Attack

Relevance:
Generic

Layer:
Application-Level

Platforms:
Any

Target Type:
Application

Affected Mechanisms:
Authentication Enforcement

Invented In:
02/12/2014

Added In:
02/12/2014


Vector Operation Method:
Attackers can bypass the authentication enforcement by accessing protected resources with a different domain or IP address representation of the target domain.


Direct Variant:

Authentication Bypass via Alternative IP Access

Variant Title:
Authentication Bypass via Alternative IP Access

Typical Severity:
Major

Resources:

White Papers:

Learn More: