MapUrlToZone Security Feature Bypass Vulnerability
MapUrlToZone Security Feature Bypass Vulnerability
The product is vulnerable to file system contents disclosure through path equivalence. Path equivalence involves the use of special characters in file and directory names. The associated manipulations are intended to generate multiple names for the same object.
https://cwe.mitre.org/data/definitions/41.html →Open in CWE collection →Some APIs will strip certain leading characters from a string of parameters. An adversary can intentionally introduce leading "ghost" characters (extra characters that don't affect the validity of the request at the API layer) that enable the input to pass the filters and therefore process the adversary's input. This occurs when the targeted API will accept input data in several syntactic forms and interpret it in the equivalent semantic way, while the filter does not take into account the full spectrum of the syntactic forms acceptable to the targeted API.
https://capec.mitre.org/data/definitions/3.html →Open in CAPEC collection →| Product | Vendor | Status |
|---|---|---|
| windows_10_1507 | * | Tracked |
| windows_10_1607 | * | Tracked |
| windows_10_1809 | * | Tracked |
| windows_10_21h2 | * | Tracked |
| windows_10_22h2 | * | Tracked |
| windows_11_22h2 | * | Tracked |
| windows_11_23h2 | * | Tracked |
| windows_11_24h2 | * | Tracked |
| windows_server_2008 | * | Tracked |
| windows_server_2012 | * | Tracked |
| windows_server_2016 | * | Tracked |
| windows_server_2019 | * | Tracked |
| windows_server_2022 | * | Tracked |
| windows_server_2022_23h2 | * | Tracked |
| windows_server_2025 | * | Tracked |
| Windows | Microsoft | Tracked |
| Windows | Microsoft | Tracked |
| Windows | Microsoft | Tracked |
| Windows | Microsoft | Tracked |
| Windows | Microsoft | Tracked |