CWE-605

Multiple Binds to the Same Port

Variant

Draft

Description

When multiple sockets are allowed to bind to the same port, other services on that port may be stolen or spoofed.

On most systems, a combination of setting the SO_REUSEADDR socket option, and a call to bind() allows any process to bind to a port to which a previous process has bound with INADDR_ANY. This allows a user to bind to the specific address of a server bound to INADDR_ANY on an unprivileged port, and steal its UDP packets/TCP connection.

Parent Weaknesses (ChildOf)

CWE-666: Operation on Resource in Wrong...

CWE-675: Multiple Operations on Resourc...

Common Consequences

Scope

Confidentiality

Integrity

Impact

Read Application Data

Potential Mitigations

Policy

Restrict server socket address to known local addresses.

Applicable Platforms

Not Language-Specific

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now