CWE-66: Improper Handling of File Names that Identify Virtual Resources

Description

The product does not handle or incorrectly handles a file name that identifies a "virtual" resource that is not directly specified within the directory that is associated with the file name, causing the product to perform file-based operations on a resource that is not a file.

Submission Date :

July 19, 2006, midnight

Modification Date :

2023-10-26 00:00:00+00:00

Organization :

MITRE
Extended Description

Virtual file names are represented like normal file names, but they are effectively aliases for other resources that do not behave like normal files. Depending on their functionality, they could be alternate entities. They are not necessarily listed in directories.

Related Weaknesses

This table shows the weaknesses and high level categories that are related to this weakness. These relationships are defined to give an overview of the different insight to similar items that may exist at higher and lower levels of abstraction.

CWE-67: Improper Handling of Windows Device Names
Go to
CWE-69: Improper Handling of Windows ::DATA Alternate Data Stream
Go to
CWE-72: Improper Handling of Apple HFS+ Alternate Data Stream Path
Go to
CWE-706: Use of Incorrectly-Resolved Name or Reference
Go to

Visit http://cwe.mitre.org/ for more details.