CAPEC Related Weakness
Man in the Middle Attack
CWE-287 Improper Authentication
CWE-290 Authentication Bypass by Spoofing
CWE-294 Authentication Bypass by Capture-replay
CWE-300 Channel Accessible by Non-Endpoint
CWE-593 Authentication Bypass: OpenSSL CTX Object Modified after SSL Objects are Created
CWE-724 OWASP Top Ten 2004 Category A3 - Broken Authentication and Session Management