CWE - CWE-878: CERT C++ Secure Coding Section 10

Home > CWE List > CWE- Individual Dictionary Definition (2.4)

CWE List
Full Dictionary View
Development View
Research View
Reports

About
Sources
Process
Documents
FAQs

Community
SwA On-Ramp
T-Shirt
Discussion List
Discussion Archives
Contact Us

Scoring
CWSS
CWRAF
CWE/SANS Top 25

Compatibility
Requirements
Coverage Claims Representation
Compatible Products
Make a Declaration

News
Calendar
Free Newsletter

Search the Site

CWE-878: CERT C++ Secure Coding Section 10 - Environment (ENV)

CERT C++ Secure Coding Section 10 - Environment (ENV)

Category ID: 878 (Category)

Status: Incomplete

Description

Description Summary

Weaknesses in this category are related to rules in the Environment (ENV) section of the CERT C++ Secure Coding Standard. Since not all rules map to specific weaknesses, this category may be incomplete.

Relationships

Nature	Type	ID	Name	View(s) this relationship pertains to
ParentOf	Weakness Base	78	Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	Weaknesses Addressed by the CERT C++ Secure Coding Standard868
ParentOf	Weakness Base	88	Argument Injection or Modification	Weaknesses Addressed by the CERT C++ Secure Coding Standard868
ParentOf	Weakness Class	119	Improper Restriction of Operations within the Bounds of a Memory Buffer	Weaknesses Addressed by the CERT C++ Secure Coding Standard868
ParentOf	Compound Element: Composite	426	Untrusted Search Path	Weaknesses Addressed by the CERT C++ Secure Coding Standard (primary)868
ParentOf	Weakness Base	462	Duplicate Key in Associative List (Alist)	Weaknesses Addressed by the CERT C++ Secure Coding Standard (primary)868
ParentOf	Weakness Class	705	Incorrect Control Flow Scoping	Weaknesses Addressed by the CERT C++ Secure Coding Standard868
ParentOf	Weakness Base	807	Reliance on Untrusted Inputs in a Security Decision	Weaknesses Addressed by the CERT C++ Secure Coding Standard (primary)868
MemberOf	View	868	Weaknesses Addressed by the CERT C++ Secure Coding Standard	Weaknesses Addressed by the CERT C++ Secure Coding Standard (primary)868

References

CERT. "10. Environment (ENV)". <https://www.securecoding.cert.org/confluence/display/cplusplus/10.+Environment+%28ENV%29>.

Content History

Submissions
Submission Date	Submitter	Organization	Source
2011-08-04			Internal CWE Team
2011-08-04

Page Last Updated: February 20, 2013


	CWE is co-sponsored by the office of Cybersecurity and Communications at the U.S. Department of Homeland Security. This Web site is sponsored and managed by The MITRE Corporation to enable stakeholder collaboration. Copyright © 2006-2013, The MITRE Corporation. CWE, CWSS, CWRAF, and the CWE logo are trademarks of The MITRE Corporation. Contact cwe@mitre.org for more information.	Privacy policy Terms of use Contact us