A product can be used as an intermediary or proxy between an
					attacker and the ultimate target, so that the attacker can either bypass access
					controls or hide activities.