CWE-271: Privilege Dropping / Lowering Errors

CWE-271: Privilege Dropping / Lowering Errors | RadicalNotion.AI

Code examples

Illustrative examples from MITRE showing how the weakness appears in code.

The following code calls chroot() to restrict the application to a subset of the filesystem below APP_HOME in order to prevent an attacker from using the program to gain unauthorized access to files located elsewhere. The code then opens a file specified by the user and processes the contents of the file.

Vulnerable example

chroot(APP_HOME);

Constraining the process inside the application's home directory before opening any files is a valuable security measure. However, the absence of a call to setuid() with some non-zero value means the application is continuing to operate with unnecessary root privileges. Any successful exploit carried out by an attacker against the application can now result in a privilege escalation attack because any malicious operations will be performed with the privileges of the superuser. If the application drops to the privilege level of a non-root user, the potential for damage is substantially reduced.

CWE-271: Privilege Dropping / Lowering Errors

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

How to prevent it

Code examples

Illustrative examples

Terminology & mappings

Mapped taxonomies

Frequently asked questions

What is CWE-271?

What CVEs are caused by CWE-271?

How do you prevent CWE-271?

What are the consequences of CWE-271?

Is CWE-271 actively exploited?

References

Stay ahead of CWE-271

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

How to prevent it

Code examples

Illustrative examples

Related weaknesses

Parent

Child

Peer

Terminology & mappings

Mapped taxonomies

Frequently asked questions

What is CWE-271?

What CVEs are caused by CWE-271?

How do you prevent CWE-271?

What are the consequences of CWE-271?

Is CWE-271 actively exploited?

References

Stay ahead of CWE-271