CWE-294 - CERT CVE

CWE-294 - Authentication Bypass by Capture-replay

A capture-replay flaw exists when the design of the software makes it possible for a malicious user to sniff network traffic and bypass authentication by replaying it to the server in question to the same effect as the original message (or with minor changes).

CAPEC ID	Naziv
CAPEC-102	Session Sidejacking
CAPEC-509	Kerberoasting
CAPEC-555	Remote Services with Stolen Credentials
CAPEC-561	Windows Admin Shares with Stolen Credentials
CAPEC-60	Reusing Session IDs (aka Session Replay)
CAPEC-644	Use of Captured Hashes (Pass The Hash)
CAPEC-645	Use of Captured Tickets (Pass The Ticket)
CAPEC-652	Use of Known Kerberos Credentials
CAPEC-94	Man in the Middle Attack