312-50V10 · Question #844
Boney, a professional hacker, targets an organization for financial benefits. He performs an attack by sending his session ID using an MITM attack technique. Boney first obtains a valid session ID by
The correct answer is A. Session donation attack. A session donation attack occurs when an attacker donates their own authenticated session ID to a victim so that the victim's subsequent actions are processed under the attacker's account.
Question
Boney, a professional hacker, targets an organization for financial benefits. He performs an attack by sending his session ID using an MITM attack technique. Boney first obtains a valid session ID by logging into a service and later feeds the same session 10 to the target employee. The session ID links the target employee to Boneys account page without disclosing any information to the victim. When the target employee clicks on the link, all the sensitive payment details entered in a form are linked to Boneys account. What is the attack performed by Boney in the above scenario?
Options
- ASession donation attack
- BSession fixation attack
- CForbidden attack
- DCRIME attack
How the community answered
(27 responses)- A85% (23)
- B7% (2)
- C4% (1)
- D4% (1)
Why each option
A session donation attack occurs when an attacker donates their own authenticated session ID to a victim so that the victim's subsequent actions are processed under the attacker's account.
In a session donation attack, the attacker first logs in to establish a valid session, then delivers that session ID to the victim via a crafted link using an MITM or social engineering vector. When the victim follows the link and submits data such as payment information, it is processed entirely within the attacker's session context, routing the sensitive data to the attacker's account without any visible indication to the victim.
Session fixation involves forcing the victim to authenticate using a pre-determined session ID so the attacker can hijack the session after login - it does not involve donating the attacker's own session to capture form submissions.
A forbidden attack exploits TLS CBC nonce reuse to forge MAC signatures for decryption, which is entirely unrelated to session ID manipulation or account-linking via crafted links.
CRIME (Compression Ratio Info-leak Made Easy) exploits TLS data compression to recover session tokens from encrypted traffic and is not related to session donation or payment form hijacking.
Concept tested: Session donation attack via MITM session ID delivery
Source: https://owasp.org/www-community/attacks/Session_fixation
Topics
Community Discussion
No community discussion yet for this question.