VariantDraft

CWE-605Multiple Binds to the Same Port

Category: other

Description

When multiple sockets are allowed to bind to the same port, other services on that port may be stolen or spoofed. On most systems, a combination of setting the SO_REUSEADDR socket option, and a call to bind() allows any process to bind to a port to which a previous process has bound with INADDR_ANY. This allows a user to bind to the specific address of a server bound to INADDR_ANY on an unprivileged port, and steal its UDP packets/TCP connection.

Common consequences· 1

  • Confidentiality / Integrity — Read Application Data
    Packets from a variety of network services may be stolen or the services spoofed.

Potential mitigations· 1

  • [Policy]Restrict server socket address to known local addresses.

References

  1. https://cwe.mitre.org/data/definitions/605.html

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Exposure of File Descriptor to Unintended Control Sphere ('File Descriptor Leak')
CWE
Multiple Locks of a Critical Resource
CWE
Missing Release of File Descriptor or Handle after Effective Lifetime
CWE
Process Control
CWE
Authentication Bypass: OpenSSL CTX Object Modified after SSL Objects are Created
CWE
DEPRECATED: Uncontrolled File Descriptor Consumption
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.