CWE-422 (未保护的Windows消息通道(Shatter)) — Vulnerability Class 2

CWE-422, known as Unprotected Windows Messaging Channel or Shatter, is a critical security weakness where an application fails to validate the origin of messages within the Windows Messaging System. This vulnerability typically arises when software operates with elevated privileges, allowing attackers to exploit the lack of source verification by injecting malicious messages directly into the target process. By leveraging inter-process communication mechanisms, an adversary can trick the privileged application into executing unintended actions or accessing sensitive data, effectively bypassing standard security controls. To mitigate this risk, developers must implement strict message validation protocols, ensuring that all incoming communications are authenticated and originate from trusted sources. Additionally, applying the principle of least privilege reduces the potential impact of successful exploitation by limiting the permissions granted to the application during runtime.