CAPEC-22: Exploiting Trust in Client
ID
CAPEC-22
Typical Severity
High
Likelihood Of Attack
High
Status
Draft
An attack of this type exploits vulnerabilities in client/server communication channel authentication and data integrity. It leverages the implicit trust a server places in the client, or more importantly, that which the server believes is the client. An attacker executes this type of attack by communicating directly with the server where the server believes it is communicating only with a valid client. There are numerous variations of this type of attack.