Path Equivalence: '\multiple\\internal\backslash'
This vulnerability occurs when an application accepts file paths containing sequences of multiple internal backslashes (like '\multiple\\internal\\backslash') without properly normalizing them. This can confuse the system's path resolution logic, potentially allowing attackers to access files or directories outside the intended scope.
When a system processes a file path, it typically uses a single backslash as a directory separator on Windows. However, sequences of multiple consecutive backslashes (e.g., 'C:\\folder\\\subfolder') can create ambiguity. Different operating system functions or parsing libraries may interpret these sequences inconsistently—some might collapse them, while others treat them as a special namespace or produce unexpected navigation. This inconsistency is the core weakness that attackers can probe and exploit. To prevent this, developers should implement strict path validation and canonicalization. Always normalize paths by resolving sequences of multiple backslashes to a single separator before any file system operations. Combine this with other defenses like whitelisting allowed directories, using safe API functions that prevent traversal, and running the application with the least necessary file system permissions. This layered approach closes the gap between how the application sees the path and how the underlying OS interprets it.
Impact: Read Files or DirectoriesModify Files or Directories
Strategy: Input Validation
- File Processing
- File or Directory
- PLOVER
- Software Fault Patterns