The Challenge-Handshake Authentication Protocol (CHAP) can be spoofed to allow playback attacks. In CHAP, the server sends a challenge to the client, which then responds with a hashed value combining the challenge and the passWord. If an attacker captures this exchange, they can replay the hashed response later, potentially gaining unauthorized access. This vulnerability arises because CHAP does not provide sufficient protection against replaying previously captured responses.
Copyright © 2026 eLLeNow.com All Rights Reserved.