CWE - CWE-426: Untrusted Search Path (Draft 9)

Home > CWE List > CWE-426 Individual Dictionary Definition (Draft 9)

CWE List
Full Dictionary View
Classification Tree
Reports

About
Sources
Process
Documents

Community
Related Activities
Discussion List
Research

News
Calendar
Free Newsletter

Compatibility
Program
Requirements
Declarations
Make a Declaration

Contact Us
Search the Site

Section Contents
CWE List
Full Dictionary View
Classification Tree
Reports
Other Items of Interest
Sources

Key
- Weakness
- Base
- Variant
- Class
- Chain
- Composite
- Category
- View
- Deprecated

CWE-426 Individual Dictionary Definition (Draft 9)

Compound Element ID

Status: Draft

426 (Compound Element Base: Composite)

Description

Summary

If a function performs automatic path searching for resources and an attacker can influence that path, then the attacker may be able to redirect the search path to point to resources under the control of the attacker.

Alternate Terms

Untrusted Path

Functional Area

Program invocation, code libraries.

Likelihood of Exploit

High

Affected Resource

System Process

Common Consequences

Authorization: There is the potential for arbitrary code execution with privileges of the vulnerable program.

Potential Mitigations

Implementation: Use other functions which require explicit paths. Making use of any of the other readily available functions which require explicit paths is a safe way to avoid this problem.

Observed Examples

Reference	Description
CVE-1999-1120	Application relies on its PATH environment variable to find and execute program.
CVE-2002-0470	Application relies on its PATH environment variable to find and execute program.
CVE-2007-2027	Chain: untrusted search path enabling resultant format string by loading malicious internationalization messages.

Research Gaps

Search path issues on Windows are under-studied and possibly under-reported.

Relationships

Nature	Type	ID	Name
ChildOf	Category	417	Channel and Path Errors
ChildOf	Weakness Class	673	External Influence of Sphere Definition
Requires	Weakness Class	216	Containment Errors (Container Errors)
Requires	Category	275	Permission Issues
Requires	Weakness Base	471	Modification of Assumed-Immutable Data (MAID)
ChildOf	Category	634	Weaknesses that Affect System Processes
CanAlsoBe	Compound Element: Composite	98	Insufficient Control of Filename for Include/Require Statement in PHP Program (aka 'PHP File Inclusion')

Source Taxonomies

PLOVER - Untrusted Search Path

CLASP - Relative path library search

Applicable Platforms

All

Related Attack Patterns

CAPEC-ID	Attack Pattern Name
38	Leveraging/Manipulating Configuration File Search Paths

Page Last Updated: April 22, 2008


	CWE is sponsored by the National Cyber Security Division of the U.S. Department of Homeland Security. This Web site is hosted by The MITRE Corporation. Copyright 2008, The MITRE Corporation. CWE and the CWE logo are trademarks of The MITRE Corporation. Contact cwe@mitre.org for more information.	Privacy policy Terms of use Contact us