Authentication Bypass via Alternative IP Access
Variants:
Direct
Also Known As:
Alternative IP Address Encodings
Vector Type:
Attack
Relevance:
Generic
Layer:
Application-Level
Platforms:
Any
Target Type:
Application
Affected Mechanisms:
Authentication Enforcement
Invented In:
02/12/2014
Added In:
02/12/2014
Vector Operation Method:
Attackers can bypass the authentication enforcement by accessing protected resources with a different domain or IP address representation of the target domain.
