Category:Attack Categorisation By Attacker Model: Access to Valid Token: Difference between revisions
Jump to navigation
Jump to search
(Created page with "The attacker knows the component for identification and authentication of the user. The goal in this class of attacks is to expand the rights provided by the given token. Usin...") |
No edit summary |
||
| (2 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
The attacker knows the component for identification and authentication of the user. The goal in this class of attacks is to expand the rights provided by the given token. Using of [https://en.wikipedia.org/wiki/Cross-site_scripting Cross-Site-Scripting (XSS)] attack the malefactor can obtain a token. | The attacker knows the component for identification and authentication of the user. The goal in this class of attacks is to expand the rights provided by the given token. Using of [https://en.wikipedia.org/wiki/Cross-site_scripting Cross-Site-Scripting (XSS)] attack the malefactor can obtain a token. | ||
[[File:MA2_.jpg|centre]] | |||
==Part of main category:== | |||
*[[:Category:Attack_Categorisation_By_Attacker_Model]] | |||
[[Category:Attack_Categorisation_By_Attacker_Model]] | |||
Latest revision as of 17:24, 2 February 2016
The attacker knows the component for identification and authentication of the user. The goal in this class of attacks is to expand the rights provided by the given token. Using of Cross-Site-Scripting (XSS) attack the malefactor can obtain a token.
Part of main category:
Pages in category "Attack Categorisation By Attacker Model: Access to Valid Token"
The following 3 pages are in this category, out of 3 total.