CWE-40 - Path Traversal: '\\UNC\share\name\' (Windows UNC Share)

CWE-40

Abstraction:
Variant

Structure:
Simple

Status:
Draft

Weakness Name: Path Traversal: '\\UNC\share\name\' (Windows UNC Share)

Description: The product accepts input that identifies a Windows UNC share ('\\UNC\share\name') that potentially redirects access to an unintended location or arbitrary file.

Common Consequences: Scope: Confidentiality, Integrity
Impact: Read Files or Directories, Modify Files or Directories

Related Weaknesses: CWE-36Absolute Path Traversal

Release Date:
2006-07-19

Latest Modification Date:
2023-06-29

Free security scan for your website

Don't show website scan report rating on the leaderboard