CWE-941: Incorrectly Specified Destination in a Communication Channel
CWE版本: 4.18
更新日期: 2025-09-09
弱点描述
The product creates a communication channel to initiate an outgoing request to an actor, but it does not correctly specify the intended destination for that actor.
观察示例
参考: CVE-2013-5211
composite: NTP feature generates large responses (high amplification factor) with spoofed UDP source addresses.
参考: CVE-1999-0513
Classic "Smurf" attack, using spoofed ICMP packets to broadcast addresses.
参考: CVE-1999-1379
DNS query with spoofed source address causes more traffic to be returned to spoofed address than was sent by the attacker.
引入模式
| 阶段 | 说明 |
|---|---|
| Architecture and Design | - |
| Implementation | REALIZATION: This weakness is caused during implementation of an architectural security tactic. |