CWE

Common Weakness Enumeration

A Community-Developed Dictionary of Software Weakness Types
CWE/SANS Top 25 Most Dangerous Software Errors Common Weakness Scoring System
Common Weakness Risk Analysis Framework
Home > CWE List > CWE- Individual Dictionary Definition (2.5)  

CWE-718: OWASP Top Ten 2007 Category A7 - Broken Authentication and Session Management

 
OWASP Top Ten 2007 Category A7 - Broken Authentication and Session Management
Category ID: 718 (Category)Status: Incomplete
+ Description

Description Summary

Weaknesses in this category are related to the A7 category in the OWASP Top Ten 2007.
+ Relationships
NatureTypeIDNameView(s) this relationship pertains toView(s)
ParentOfWeakness ClassWeakness Class287Improper Authentication
Weaknesses in OWASP Top Ten (2007) (primary)629
ParentOfWeakness VariantWeakness Variant301Reflection Attack in an Authentication Protocol
Weaknesses in OWASP Top Ten (2007) (primary)629
ParentOfWeakness BaseWeakness Base522Insufficiently Protected Credentials
Weaknesses in OWASP Top Ten (2007) (primary)629
MemberOfViewView629Weaknesses in OWASP Top Ten (2007)
Weaknesses in OWASP Top Ten (2007) (primary)629
+ References
OWASP. "Top 10 2007-Broken Authentication and Session Management". 2007. <http://www.owasp.org/index.php/Top_10_2007-A7>.
+ Content History
Submissions
Submission DateSubmitterOrganizationSource
2008-09-09MITREInternal CWE Team
Modifications
Modification DateModifierOrganizationSource
2009-12-28CWE Content TeamMITREInternal
updated Related_Attack_Patterns
Page Last Updated: July 16, 2013
 

CWE is co-sponsored by the office of Cybersecurity and Communications at the U.S. Department of Homeland Security.

This Web site is sponsored and managed by The MITRE Corporation to enable stakeholder collaboration. Copyright © 2006-2013, The MITRE Corporation. CWE, CWSS, CWRAF, and the CWE logo are trademarks of The MITRE Corporation.

Contact cwe@mitre.org for more information.
Privacy policy
Terms of use
Contact us