CWE-669: Incorrect Resource Transfer Between Spheres

CWE-669: Incorrect Resource Transfer Between Spheres | RadicalNotion.AI

Code examples

Illustrative examples from MITRE showing how the weakness appears in code.

The following code demonstrates the unrestricted upload of a file with a Java servlet and a path traversal vulnerability. The action attribute of an HTML form is sending the upload file request to the Java servlet.

Safe example

xml

<form action="FileUploadServlet" method="post" enctype="multipart/form-data">

Vulnerable example

java

public class FileUploadServlet extends HttpServlet {

This code includes an external script to get database credentials, then authenticates a user against the database, allowing access to the application.

Vulnerable example

php

//assume the password is already encrypted, avoiding CWE-312

This code either generates a public HTML user information page or a JSON response containing the same user information.

Vulnerable example

php

// API flag, output JSON if set

The programmer is careful to not display the user's e-mail address when displaying the public HTML page. However, the e-mail address is not removed from the JSON response, exposing the user's e-mail address.

CWE-669: Incorrect Resource Transfer Between Spheres

Overview

Background

Real-world CVEs

Common consequences

How it happens

When it is introduced

Code examples

Illustrative examples

Frequently asked questions

What is CWE-669?

What CVEs are caused by CWE-669?

What are the consequences of CWE-669?

Is CWE-669 actively exploited?

References

Stay ahead of CWE-669

Overview

Background

Real-world CVEs

Common consequences

How it happens

When it is introduced

Code examples

Illustrative examples

Related weaknesses

Parent

Child

Related

Frequently asked questions

What is CWE-669?

What CVEs are caused by CWE-669?

What are the consequences of CWE-669?

Is CWE-669 actively exploited?

References

Stay ahead of CWE-669