[Forgot Password]
Login  Register Subscribe

23631

 
 

115083

 
 

97147

 
 

909

 
 

78730

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CWE
view XML

Trusting Self-reported IP Address

ID: 291Date: (C)2012-05-14   (M)2012-11-08
Type: compound elementStatus: INCOMPLETE
Abstraction Type: Variant





Description

The use of IP addresses as authentication is flawed and can easily be spoofed by malicious users.

Likelihood of Exploit: High

Applicable Platforms
Language Class: All

Time Of Introduction

  • Architecture and Design

Related Attack Patterns

Common Consequences

ScopeTechnical ImpactNotes
Access_Control
Non-Repudiation
 
Hide activities
Gain privileges / assume identity
 
Malicious users can fake authentication information, impersonating any IP address.
 

Detection Methods
None

Potential Mitigations

PhaseStrategyDescriptionEffectivenessNotes
Architecture and Design
 
 Use other means of identity verification that cannot be simply spoofed. Possibilities include a username/password or certificate.
 
  

Relationships

Related CWETypeViewChain
CWE-291 Requires CWE-471 Weakness CWE-1000  

Demonstrative Examples   (Details)

  1. Both of these examples check if a request is from a trusted address before responding to the request. (Demonstrative Example Id DX-99)

White Box Definitions
None

Black Box Definitions
None

Taxynomy Mappings

TaxynomyIdNameFit
CLASP  Trusting self-reported IP address
 
 

References:
None

© 2013 SecPod Technologies