CWE - CWE-753: 2009 Top 25 - Porous Defenses (2.1)

Home > CWE List > CWE- Individual Dictionary Definition (2.1)

CWE List
Full Dictionary View
Development View
Research View
Reports

About
Sources
Process
Documents
FAQs

Community
Related Activities
Discussion List
Research
CWE/SANS Top 25
CWSS
CWRAF
T-Shirt

News
Calendar
Free Newsletter

Compatibility
Program
Requirements
Coverage Claims Representation
Declarations
Make a Declaration

Contact Us
Search the Site

CWE-753: 2009 Top 25 - Porous Defenses

2009 Top 25 - Porous Defenses

Category ID: 753 (Category)

Status: Incomplete

Description

Description Summary

Weaknesses in this category are listed in the "Porous Defenses" section of the 2009 CWE/SANS Top 25 Programming Errors.

Relationships

Nature	Type	ID	Name	View(s) this relationship pertains to
ParentOf	Weakness Class	250	Execution with Unnecessary Privileges	Weaknesses in the 2009 CWE/SANS Top 25 Most Dangerous Programming Errors (primary)750
ParentOf	Weakness Base	259	Use of Hard-coded Password	Weaknesses in the 2009 CWE/SANS Top 25 Most Dangerous Programming Errors (primary)750
ParentOf	Weakness Class	285	Improper Authorization	Weaknesses in the 2009 CWE/SANS Top 25 Most Dangerous Programming Errors (primary)750
ParentOf	Weakness Base	327	Use of a Broken or Risky Cryptographic Algorithm	Weaknesses in the 2009 CWE/SANS Top 25 Most Dangerous Programming Errors (primary)750
ParentOf	Weakness Class	330	Use of Insufficiently Random Values	Weaknesses in the 2009 CWE/SANS Top 25 Most Dangerous Programming Errors (primary)750
ParentOf	Weakness Base	602	Client-Side Enforcement of Server-Side Security	Weaknesses in the 2009 CWE/SANS Top 25 Most Dangerous Programming Errors (primary)750
ParentOf	Weakness Class	732	Incorrect Permission Assignment for Critical Resource	Weaknesses in the 2009 CWE/SANS Top 25 Most Dangerous Programming Errors (primary)750
ParentOf	Weakness Base	798	Use of Hard-coded Credentials	Weaknesses in the 2009 CWE/SANS Top 25 Most Dangerous Programming Errors (primary)750
MemberOf	View	750	Weaknesses in the 2009 CWE/SANS Top 25 Most Dangerous Programming Errors	Weaknesses in the 2009 CWE/SANS Top 25 Most Dangerous Programming Errors (primary)750

References

"2009 CWE/SANS Top 25 Programming Errors". 2009-01-12. <http://cwe.mitre.org/top25>.

Content History

Page Last Updated: September 12, 2011


	CWE is a Software Assurance strategic initiative co-sponsored by the National Cyber Security Division of the U.S. Department of Homeland Security. This Web site is sponsored and managed by The MITRE Corporation to enable stakeholder collaboration. Copyright © 2006-2012, The MITRE Corporation. CWE, CWSS, CWRAF, and the CWE logo are trademarks of The MITRE Corporation. Contact cwe@mitre.org for more information.	Privacy policy Terms of use Contact us