CWE
Home > CWE List > CWE-474 Individual Dictionary Definition (Draft 9)   View the CWE List

CWE-474 Individual Dictionary Definition (Draft 9)

Use of Function with Inconsistent Implementations
Weakness ID
Status: Draft

474 (Weakness Base)

Description

Summary

The code uses a function that has inconsistent implementations across operating systems and versions, which might cause security-relevant portability problems.

Context Notes

The behavior of functions in this category varies by operating system, and at times, even by operating system version. Implementation differences can include: - Slight differences in the way parameters are interpreted leading to inconsistent results. - Some implementations of the function carry significant security risks. - The function might not be defined on all platforms.

Relationships
NatureTypeIDName
ChildOfWeakness ClassWeakness ClassWeakness Class398Indicator of Poor Code Quality
ParentOfWeakness VariantWeakness VariantWeakness Variant589Call to Non-ubiquitous API
Source Taxonomies

7 Pernicious Kingdoms - Inconsistent Implementations

Applicable Platforms

All

Page Last Updated: April 22, 2008