CWE-1260: Improper Handling of Overlap Between Protected Memory Ranges

Base Stable Simple

CWE版本: 4.18

更新日期: 2025-09-09

弱点描述

The product allows address regions to overlap, which can result in the bypassing of intended memory protection.

常见后果

影响范围: Confidentiality Integrity Availability

技术影响: Modify Memory Read Memory DoS: Instability

潜在缓解措施

阶段: Architecture and Design

阶段: Implementation

有效性: High

检测方法

方法: Manual Analysis

Create a high privilege memory block of any arbitrary size. Attempt to create a lower privilege memory block with an overlap of the high privilege memory block. If the creation attempt works, fix the hardware. Repeat the test.

有效性: High

观察示例

参考: CVE-2008-7096

virtualization product allows compromise of hardware product by accessing certain remapping registers.

参考: [REF-1100]

processor design flaw allows ring 0 code to access more privileged rings by causing a register window to overlap a range of protected system RAM [REF-1100]

引入模式

阶段	说明
Architecture and Design	Such issues could be introduced during hardware architecture and design or implementation and identified later during the Testing phase.
Implementation	-

适用平台

编程语言

Not Language-Specific (Undetermined)

操作系统

Not OS-Specific (Undetermined)

技术

Memory Hardware (Undetermined) Processor Hardware (Undetermined)

关键信息

CWE ID: CWE-1260

抽象级别: Base

结构: Simple

状态: Stable

CWE-1260: Improper Handling of Overlap Between Protected Memory Ranges

弱点描述

常见后果

潜在缓解措施

检测方法

观察示例

引入模式

适用平台

编程语言

操作系统

技术

关键信息

相关弱点

相关攻击模式

CWE-1260: Improper Handling of Overlap Between Protected Memory Ranges

弱点描述

常见后果

潜在缓解措施

检测方法

观察示例

引入模式

适用平台

编程语言

操作系统

技术

关键信息

相关弱点

ChildOf CWE-284

CanPrecede CWE-119

相关攻击模式