|
|
|
|
CWE-239: Failure to Handle Incomplete Element | |
| | Failure to Handle Incomplete Element |
|
| Weakness ID: 239 (Weakness Base) | | Status: Draft |
 Description
Description Summary The software does not properly handle when a particular element
is not completely specified.
Time of Introduction
- Architecture and Design
- Implementation
Observed Examples | Reference | Description |
|---|
| CVE-2002-1532 | HTTP GET without \r\n\r\n CRLF sequences causes
product to wait indefinitely and prevents other users from accessing
it. |
| CVE-2003-0195 | Partial request is not timed
out. |
| CVE-2005-2526 | MFV. CPU exhaustion in printer via partial
printing request then early termination of
connection. |
| CVE-2002-1906 | CPU consumption by sending incomplete HTTP
requests and leaving the connections open. |
Relationships Taxonomy Mappings | Mapped Taxonomy Name | Node ID | Fit | Mapped Node Name |
|---|
| PLOVER | | | Incomplete Element |
Content History | Submissions |
|---|
| Submission Date | Submitter | Organization | Source |
|---|
| PLOVER | | Externally Mined | | | Modifications |
|---|
| Modification Date | Modifier | Organization | Source |
|---|
| 2008-07-01 | Eric Dalci | Cigital | External | | updated Time of Introduction | | 2008-09-08 | CWE Content Team | MITRE | Internal | | updated Relationships, Observed Example,
Taxonomy Mappings | | 2009-10-29 | CWE Content Team | MITRE | Internal | | updated Description |
|
