|
|
|
|
CWE-441 Individual Dictionary Definition (Draft 9)
Weakness ID
| Status: Draft 441 (Weakness Base) | | Description | Summary A product can be used as an intermediary or proxy between an attacker and the ultimate
target, so that the attacker can either bypass access controls or hide activities. | | Observed Examples | | Reference | Description |
|---|
| CVE-1999-0168 | Portmapper could redirect service requests from an attacker to another entity, which
thinks the requests came from the portmapper. | | CVE-2005-0315 | FTP server does not ensure that the IP address in a PORT command is the same as the
FTP user's session, allowing port scanning by proxy. | | CVE-2002-1484 | Web server allows attackers to request a URL from another server, including other
ports, which allows proxied scanning. | | CVE-2004-2061 | CGI script accepts and retrieves incoming URLs. | | CVE-2002-1484 | Server in debug mode allows remote attackers to use it as an intermediary for port
scanning via a request for a URL that specifies the target IP address and port, then
monitoring the resulting error message. | | CVE-2001-1484 | MFV - bounce attack allows access to TFTP from trusted side. | | CVE-1999-0017 | FTP bounce attack. Protocol allows attacker to modify the PORT command to cause the
FTP server to connect to other machines besides the attacker's. Similar to proxied trusted
channel. |
| | Context Notes | Property: Alternate Channel | | Relationships | | | Source Taxonomies | PLOVER - Unintended proxy/intermediary | | Applicable Platforms | All |
|
- Weakness
- Base
- Variant
- Class
- Chain
- Composite
- Category
- View
- Deprecated
