J2EE Bad Practices: System.exit()

From OWASP

Jump to: navigation, search

This is a Vulnerability. To view all vulnerabilities, please see the Vulnerability Category page.


This article includes content generously donated to OWASP by Fortify.JPG.

Abstract

A web application should not attempt to shut down its container.

Description

It is never a good idea for a web application to attempt to shut down the application container. A call to System.exit() is probably part of leftover debug code or code imported from a non-J2EE application.

Examples

Related Threats

Related Attacks

Related Vulnerabilities

Related Countermeasures

Categories

Retrieved from "http://www.owasp.org/index.php/J2EE_Bad_Practices:_System.exit%28%29"
Personal tools