QwikSec

Security Database

CVE

CWE

Training

CWE Database
/

CWE-622

Back to CWE list

CWE-622

Improper Validation of Function Hook Arguments

Variant
Draft

Description

The product adds hooks to user-accessible API functions, but it does not properly validate the arguments. This could lead to resultant vulnerabilities.

Such hooks can be used in defensive software that runs with privileges, such as anti-virus or firewall, which hooks kernel calls. When the arguments are not validated, they could be used to bypass the protection scheme or attack the product itself.

Parent Weaknesses (ChildOf)

CWE-20: Improper Input Validation...

Common Consequences

Scope

Integrity

Impact

Unexpected State

Potential Mitigations

Architecture and Design

Ensure that all arguments are verified, as defined by the API you are protecting.

Architecture and Design

Drop privileges before invoking such functions, if possible.

CVE-2007-0708

DoS in firewall using standard Microsoft functions

CVE-2006-7160

DoS in firewall using standard Microsoft functions

CVE-2007-1376

function does not verify that its argument is the proper type, leading to arbitrary memory write

CVE-2007-1220

invalid syscall arguments bypass code execution limits

CVE-2006-4541

DoS in IDS via NULL argument

Applicable Platforms

Not Language-Specific

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now