Add bind-socket-all-network-interfaces Python query (#2048)

Add bind-socket-all-network-interfaces Python query
2026-05-03 12:45:27 +02:00 · 2019-10-03 11:23:11 +01:00
parent a019c456e9
commit 3e6f8fb6be
8 changed files with 119 additions and 1 deletions
--- a/python/ql/test/query-tests/Security/CVE-2018-1281/BindToAllInterfaces.expected
+++ b/python/ql/test/query-tests/Security/CVE-2018-1281/BindToAllInterfaces.expected
@@ -0,0 +1,3 @@
+| BindToAllInterfaces_test.py:5:1:5:26 | Attribute() | '0.0.0.0' binds a socket to all interfaces. |
+| BindToAllInterfaces_test.py:9:1:9:18 | Attribute() | '' binds a socket to all interfaces. |
+| BindToAllInterfaces_test.py:17:1:17:26 | Attribute() | '0.0.0.0' binds a socket to all interfaces. |
--- a/python/ql/test/query-tests/Security/CVE-2018-1281/BindToAllInterfaces.qlref
+++ b/python/ql/test/query-tests/Security/CVE-2018-1281/BindToAllInterfaces.qlref
@@ -0,0 +1 @@
+Security/CVE-2018-1281/BindToAllInterfaces.ql
--- a/python/ql/test/query-tests/Security/CVE-2018-1281/BindToAllInterfaces_test.py
+++ b/python/ql/test/query-tests/Security/CVE-2018-1281/BindToAllInterfaces_test.py
@@ -0,0 +1,17 @@
+import socket
+
+# binds to all interfaces, insecure
+s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
+s.bind(('0.0.0.0', 31137))
+
+# binds to all interfaces, insecure
+s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
+s.bind(('', 4040))
+
+# binds only to a dedicated interface, secure
+s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
+s.bind(('84.68.10.12', 8080))
+
+# binds to all interfaces, insecure
+ALL_LOCALS = "0.0.0.0"
+s.bind((ALL_LOCALS, 9090))
--- a/python/ql/test/query-tests/Security/CVE-2018-1281/options
+++ b/python/ql/test/query-tests/Security/CVE-2018-1281/options
@@ -0,0 +1 @@
+semmle-extractor-options: --max-import-depth=3
				`@@ -0,0 +1 @@`
				`Security/CVE-2018-1281/BindToAllInterfaces.ql`
				`@@ -0,0 +1 @@`
				`semmle-extractor-options: --max-import-depth=3`