CWE-330: Use of Insufficiently Random Values

Description

The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.

Submission Date :

July 19, 2006, midnight

Modification Date :

2023-10-26 00:00:00+00:00

Organization :

MITRE
Extended Description

When product generates predictable values in a context requiring unpredictability, it may be possible for an attacker to guess the next value that will be generated, and use this guess to impersonate another user or access sensitive information.

Example Vulnerable Codes

Example - 1

This code attempts to generate a unique random identifier for a user's session.


srand($userID);return rand();function generateSessionID($userID){}

Because the seed for the PRNG is always the user's ID, the session ID will always be the same. An attacker could thus predict any user's session ID and potentially hijack the session.

This example also exhibits a Small Seed Space (CWE-339).

Example - 2

The following code uses a statistical PRNG to create a URL for a receipt that remains active for some period of time after a purchase.


Random ranGen = new Random();ranGen.setSeed((new Date()).getTime());return(baseUrl + ranGen.nextInt(400000000) + ".html");String GenerateReceiptURL(String baseUrl) {}

This code uses the Random.nextInt() function to generate "unique" identifiers for the receipt pages it generates. Because Random.nextInt() is a statistical PRNG, it is easy for an attacker to guess the strings it generates. Although the underlying design of the receipt system is also faulty, it would be more secure if it used a random number generator that did not produce predictable receipt identifiers, such as a cryptographic PRNG.

Related Weaknesses

This table shows the weaknesses and high level categories that are related to this weakness. These relationships are defined to give an overview of the different insight to similar items that may exist at higher and lower levels of abstraction.

CWE-331: Insufficient Entropy
Go to
CWE-334: Small Space of Random Values
Go to
CWE-335: Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG)
Go to
CWE-338: Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)
Go to
CWE-340: Generation of Predictable Numbers or Identifiers
Go to
CWE-344: Use of Invariant Value in Dynamically Changing Context
Go to
CWE-693: Protection Mechanism Failure
Go to
CWE-804: Guessable CAPTCHA
Go to
CWE-1204: Generation of Weak Initialization Vector (IV)
Go to
CWE-1241: Use of Predictable Algorithm in Random Number Generator
Go to

Visit http://cwe.mitre.org/ for more details.