About GET A DEMO

Backslash Vulnerability Database

Multiple Binds to the Same Port

Multiple Binds to the Same Port

CWE-605

Short description

When multiple sockets are allowed to bind to the same port, other services on that port may be stolen or spoofed.

Extended description

On most systems, a combination of setting the SO_REUSEADDR socket option, and a call to bind() allows any process to bind to a port to which a previous process has bound with INADDR_ANY. This allows a user to bind to the specific address of a server bound to INADDR_ANY on an unprivileged port, and steal its UDP packets/TCP connection.

Best practices to prevent this CWE

Phase: Policy

Restrict server socket address to known local addresses.

Prioritize and Uncover Reachable Vulnerabilities in Your Application Code

Identify externally reachable data flows and vulnerabilities for effective risk mitigation

© 2023 Backslash. 28 HaArba'a St., Tel-Aviv Privacy Policy | Terms of Use