CWE
Home > CWE List > CWE-118 Individual Dictionary Definition (Draft 9)   View the CWE List

CWE-118 Individual Dictionary Definition (Draft 9)

Range Errors
Weakness ID
Status: Incomplete

118 (Weakness Class)

Description

Summary

Weaknesses in this category occur when expected boundaries can be exceeded.

Relationships
NatureTypeIDName
ChildOfCategoryCategory19Data Handling
ParentOfWeakness ClassWeakness ClassWeakness Class119Failure to Constrain Operations within the Bounds of an Allocated Memory Buffer
ParentOfWeakness BaseWeakness BaseWeakness Base130Length Parameter Inconsistency
Applicable Platforms

All

Related Attack Patterns
CAPEC-IDAttack Pattern Name
10Buffer Overflow via Environment Variables
14Client-side Injection-induced Buffer Overflow
24Filter Failure through Buffer Overflow
8Buffer Overflow in an API Call
9Buffer Overflow in Local Command-Line Utilities
45Buffer Overflow via Symbolic Links
46Overflow Variables and Tags
47Buffer Overflow via Parameter Expansion
Page Last Updated: April 21, 2008