Temporal Session Race Conditions via Line Targeted ADoS
Variants:
Direct
Vector Type:
Attack
Relevance:
Generic
Layer:
Application-Level
Platforms:
Any
Target Type:
Application
Affected Mechanisms:
Session Management, Secure Design
Invented In:
15/09/2011
Added In:
25/12/2014
Vector Operation Method:
Application denial of service attacks that affect a single line of code can be used to extend the timeframe available for exploiting temporary session attributes in a race condition scenario.
