CWE
Home > CWE List > CWE-441 Individual Dictionary Definition (Draft 9)   View the CWE List

CWE-441 Individual Dictionary Definition (Draft 9)

Unintended Proxy/Intermediary
Weakness ID
Status: Draft

441 (Weakness Base)

Description

Summary

A product can be used as an intermediary or proxy between an attacker and the ultimate target, so that the attacker can either bypass access controls or hide activities.

Observed Examples
ReferenceDescription
CVE-1999-0168Portmapper could redirect service requests from an attacker to another entity, which thinks the requests came from the portmapper.
CVE-2005-0315FTP server does not ensure that the IP address in a PORT command is the same as the FTP user's session, allowing port scanning by proxy.
CVE-2002-1484Web server allows attackers to request a URL from another server, including other ports, which allows proxied scanning.
CVE-2004-2061CGI script accepts and retrieves incoming URLs.
CVE-2002-1484Server in debug mode allows remote attackers to use it as an intermediary for port scanning via a request for a URL that specifies the target IP address and port, then monitoring the resulting error message.
CVE-2001-1484MFV - bounce attack allows access to TFTP from trusted side.
CVE-1999-0017FTP bounce attack. Protocol allows attacker to modify the PORT command to cause the FTP server to connect to other machines besides the attacker's. Similar to proxied trusted channel.
Context Notes

Property: Alternate Channel

Relationships
NatureTypeIDName
ChildOfWeakness ClassWeakness ClassWeakness Class435Interaction Error
ChildOfWeakness ClassWeakness ClassWeakness Class610Externally Controlled Reference to a Resource in Another Sphere
IsRequiredByCompound Element: CompositeCompound Element: Composite352Cross-Site Request Forgery (CSRF)
IsRequiredByCompound Element: CompositeCompound Element: Composite384Session Fixation
Source Taxonomies

PLOVER - Unintended proxy/intermediary

Applicable Platforms

All

Page Last Updated: April 22, 2008