Improper Validation of Function Hook Arguments
The product adds hooks to user-accessible API functions, but it does not properly validate the arguments. This could lead to resultant vulnerabilities.
Such hooks can be used in defensive software that runs with privileges, such as anti-virus or firewall, which hooks kernel calls. When the arguments are not validated, they could be used to bypass the protection scheme or attack the product itself.
This category identifies Software Fault Patterns (SFPs) within the Tainted Input to Environment cluster (SFP27).
This view (slice) covers all the elements in CWE.
This view (slice) lists weaknesses that can be introduced during implementation.