Jump to navigation Jump to search
CWE-494: Download of Code Without Integrity Check
From the attacker's point of view, this attack consists of poisoning ARP cache or DNS entries or spoof DNS to substitute to a legitimate server and intercept/modify the traffic.
|Remediation Cost||Medium to High|
|Ease of Detection||Moderate|