CWE-507: Trojan Horse
CWE版本: 4.18
更新日期: 2025-09-09
弱点描述
The product appears to contain benign or useful functionality, but it also contains code that is hidden from normal operation that violates the intended security policy of the user or the system administrator.
常见后果
影响范围: Confidentiality Integrity Availability
技术影响: Execute Unauthorized Code or Commands
潜在缓解措施
阶段: Operation
描述: Most antivirus software scans for Trojan Horses.
阶段: Installation
描述: Verify the integrity of the product that is being installed.
引入模式
| 阶段 | 说明 |
|---|---|
| Implementation | - |
| Operation | - |
分类映射
| 分类名称 | 条目ID | 条目名称 | 映射适配度 |
|---|---|---|---|
| Landwehr | - | Trojan Horse | - |