CWE-942Permissive Cross-domain Security Policy with Untrusted Domains

PUBLISHEDweakness record
released 2014-06-23 · last modified 2025-12-11

Metadata

CWE ID:
CWE-942
摘要:
Variant
结构:
Simple
状态:
Incomplete
发布日期:
2014-06-23
更新日期:
2025-12-11

名称

Permissive Cross-domain Security Policy with Untrusted Domains

描述

The product uses a web-client protection mechanism such as a Content Security Policy (CSP) or cross-domain policy file, but the policy includes untrusted domains with which the web client is allowed to communicate.

If a cross-domain policy file includes domains that should not be trusted, such as when using wildcards under a high-level domain, then the application could be attacked by these untrusted domains. In many cases, the attack can be launched without the victim even being aware of it.

常见后果

范围:
Confidentiality, Integrity, Availability, Access Control
影响:
Execute Unauthorized Code or Commands, Bypass Protection Mechanism, Read Application Data, Varies by Context
注释:
With an overly permissive policy file, an attacker may be able to bypass the web browser's same-origin policy and conduct many of the same attacks seen in Cross-Site Scripting (CWE-79). An attacker can exploit the weakness to transfer private information from the victim's machine to the attacker, manipulate or steal cookies that may include session information, create malicious requests to a web site on behalf of the victim, or execute malicious code on the end user systems. Other damaging attacks include the disclosure of end user files, installation of Trojan horse programs, redirecting the user to some other page or site, running ActiveX controls (under Microsoft Internet Explorer) from sites that a user perceives as trustworthy, and modifying presentation of content.

相关 CWE

相关警报