|
Failure to Constrain Operations within the Bounds of an Allocated Memory Buffer Status: Draft Weakness ID: 119 (Weakness Class)Description Summary The software may potentially allow operations, such as reading or writing, to be performed at addresses not intended by the developer. Extended Description When software permits read or write operations on memory located outside of an allocated range, an attacker may be able to access/modify sensitive information, cause the system to crash, alter the intended control flow, or execute arbitrary code. Affected Resources MemoryRelationships
Taxonomy Mappings
Time of Introduction Architecture and Design ImplementationRelated Attack Patterns
Content History Modifications Eric Dalci. Cigital. 2008-07-01. (External) updated Time_of_Introduction Veracode. 2008-08-15. (External) Suggested OWASP Top Ten 2004 mapping CWE Content Team. MITRE. 2008-09-08. (Internal) updated Description, Relationships, Taxonomy_Mappings CWE Content Team. MITRE. 2008-10-14. (Internal) updated Relationships Previous Entry Names Buffer Errors (changed 2008-04-11) |
|
|
|||