CWE-346: Origin Validation Error

参考: CVE-2000-1218

DNS server can accept DNS updates from hosts that it did not query, leading to cache poisoning

参考: CVE-2018-6074

Browser does not set Mark-of-the-Web (MotW) for a downloaded .EXE file if the name is close to the maximum path length, preventing recording of a zone identifier in the filename

参考: CVE-2025-0411

Zip file extraction program does not propagate Mark-of-the-Web (MotW) metadata to files that are extracted from an Internet-downloaded Zip file

参考: CVE-2025-46652

Zip file extraction program does not propagate Mark-of-the-Web (MotW) metadata to files that are extracted from an Internet-downloaded Zip file

参考: CVE-2005-0877

DNS server can accept DNS updates from hosts that it did not query, leading to cache poisoning

参考: CVE-2001-1452

DNS server caches glue records received from non-delegated name servers

参考: CVE-2005-2188

user ID obtained from untrusted source (URL)

参考: CVE-2003-0174

LDAP service does not verify if a particular attribute was set by the LDAP server

参考: CVE-1999-1549

product does not sufficiently distinguish external HTML from internal, potentially dangerous HTML, allowing bypass using special strings in the page title. Overlaps special elements.

参考: CVE-2003-0981

product records the reverse DNS name of a visitor in the logs, allowing spoofing and resultant XSS.