Difference between revisions of "ASDR TOC Vulnerabilities"

From OWASP
Jump to: navigation, search
m (Added vulnerability - HPP)
(34 intermediate revisions by 3 users not shown)
Line 1: Line 1:
Back to [[ASDR_Table_of_Contents|TOC]]
 
 
 
# [[Access control enforced by presentation layer]]
 
# [[Access control enforced by presentation layer]]
# [[Accidental leaking of sensitive information through data queries]]
 
# [[Accidental leaking of sensitive information through error messages]]
 
# [[Accidental leaking of sensitive information through sent data]]
 
 
# [[Addition of data-structure sentinel]]
 
# [[Addition of data-structure sentinel]]
# [[Algorithmic Complexity]]
 
# [[Allowing External Setting Manipulation]]
 
 
# [[Allowing password aging]]
 
# [[Allowing password aging]]
# [[Alternate Channel Race Condition]]
+
# [[ASP.NET Misconfigurations]]
# [[Alternate Encoding]]
+
# [[ASP.NET Misconfiguration: Creating Debug Binary]]
+
# [[ASP.NET Misconfiguration: Missing Custom Error Handling]]
+
# [[ASP.NET Misconfiguration: Password in Configuration File]]
+
 
# [[Assigning instead of comparing]]
 
# [[Assigning instead of comparing]]
# [[Authentication bypass by alternate name]]
 
# [[Authentication Bypass by Alternate Path/Channel]]
 
# [[Authentication Bypass by Primary Weakness]]
 
# [[Authentication bypass by spoofing]]
 
 
# [[Authentication Bypass via Assumed-Immutable Data]]
 
# [[Authentication Bypass via Assumed-Immutable Data]]
# [[Authentication Error]]
 
# [[Authentication Logic Error]]
 
# [[Behavioral Change]]
 
# [[Behavioral Discrepancy Infoleak]]
 
# [[Behavioral problems]]
 
 
# [[Buffer Overflow]]
 
# [[Buffer Overflow]]
# [[Buffer over-read]]
 
# [[Buffer under-read]]
 
 
# [[Buffer underwrite]]
 
# [[Buffer underwrite]]
# [[Bundling Issues]]
+
# [[Business logic vulnerability]]
# [[Byte/Object Code]]
+
# [[Capture-replay]]
#[[Capture-replay]]
+
# [[Case Sensitivity (lowercase, uppercase, mixed case)]]
+
 
# [[Catch NullPointerException]]
 
# [[Catch NullPointerException]]
# [[Channel and Path Errors]]
 
# [[Cleansing, Canonicalization, and Comparison Errors]]
 
# [[Code Correctness: Call to System.gc()]]
 
# [[Code Correctness: Call to Thread.run()]]
 
# [[Code Correctness: Class Does Not Implement Cloneable]]
 
# [[Code Correctness: Double-Checked Locking]]
 
# [[Code Correctness: Erroneous finalize() Method]]
 
# [[Code Correctness: Erroneous String Compare]]
 
# [[Code Correctness: Misspelled Method Name]]
 
# [[Code Correctness: null Argument to equals()]]
 
# [[Collapse of Data into Unsafe Value]]
 
# [[Common Special Element Manipulations]]
 
 
# [[Comparing classes by name]]
 
# [[Comparing classes by name]]
 
# [[Comparing instead of assigning]]
 
# [[Comparing instead of assigning]]
 
# [[Comprehensive list of Threats to Authentication Procedures and Data]]
 
# [[Comprehensive list of Threats to Authentication Procedures and Data]]
# [[Context Switching Race Condition]]
 
 
# [[Covert timing channel]]
 
# [[Covert timing channel]]
 
# [[CRLF Injection]]
 
# [[CRLF Injection]]
 
# [[Cross Site Scripting Flaw]]
 
# [[Cross Site Scripting Flaw]]
# [[Cross-Boundary Cleansing Infoleak]]
 
 
# [[Dangerous Function]]
 
# [[Dangerous Function]]
# [[Dangerous handler not cleared/disabled during sensitive operations]]
 
# [[Data Amplification]]
 
# [[Data Leaking Between Users]]
 
# [[Data Structure Issues]]
 
# [[Dead Code: Broken Override]]
 
# [[Dead Code: Expression is Always False]]
 
# [[Dead Code: Expression is Always True]]
 
# [[Dead Code: Unused Field]]
 
# [[Dead Code: Unused Method]]
 
 
# [[Deletion of data-structure sentinel]]
 
# [[Deletion of data-structure sentinel]]
# [[Delimiter between Expressions or Commands]]
 
# [[Delimiter Problems]]
 
 
# [[Deserialization of untrusted data]]
 
# [[Deserialization of untrusted data]]
 
# [[Directory Restriction Error]]
 
# [[Directory Restriction Error]]
# [[Discrepancy Information Leaks]]
 
 
# [[Double Free]]
 
# [[Double Free]]
# [[Doubled character XSS manipulations]]
 
 
# [[Doubly freeing memory]]
 
# [[Doubly freeing memory]]
 
# [[Duplicate key in associative list (alist)]]
 
# [[Duplicate key in associative list (alist)]]
# [[Early Amplification]]
 
# [[EJB Bad Practices: Use of AWT/Swing]]
 
# [[EJB Bad Practices: Use of Class Loader]]
 
# [[EJB Bad Practices: Use of java.io]]
 
# [[EJB Bad Practices: Use of Sockets]]
 
# [[EJB Bad Practices: Use of Synchronization Primitives]]
 
 
# [[Empty Catch Block]]
 
# [[Empty Catch Block]]
 
# [[Empty String Password]]
 
# [[Empty String Password]]
# [[Error Conditions, Return Values, Status Codes]]
 
# [[Error Message Infoleaks]]
 
# [[Escape, Meta, or Control Character / Sequence]]
 
# [[Expected behavior violation]]
 
# [[External behavioral inconsistency infoleak]]
 
# [[External initialization of trusted variables or values]]
 
# [[Extra Parameter Error]]
 
# [[Extra Special Element]]
 
# [[Extra Unhandled Features]]
 
# [[Extra Value Error]]
 
# [[Fails poorly due to insufficient permissions]]
 
 
# [[Failure of true random number generator]]
 
# [[Failure of true random number generator]]
 
# [[Failure to account for default case in switch]]
 
# [[Failure to account for default case in switch]]
Line 103: Line 35:
 
# [[Failure to encrypt data]]
 
# [[Failure to encrypt data]]
 
# [[Failure to follow chain of trust in certificate validation]]
 
# [[Failure to follow chain of trust in certificate validation]]
 +
# [[Failure to follow guideline/specification]]
 
# [[Failure to protect stored data from modification]]
 
# [[Failure to protect stored data from modification]]
 
# [[Failure to provide confidentiality for stored data]]
 
# [[Failure to provide confidentiality for stored data]]
Line 109: Line 42:
 
# [[File Access Race Condition: TOCTOU]]
 
# [[File Access Race Condition: TOCTOU]]
 
# [[Format String]]
 
# [[Format String]]
# [[General Special Element Problems]]
 
# [[Grouping Element / Paired Delimiter]]
 
 
# [[Guessed or visible temporary file]]
 
# [[Guessed or visible temporary file]]
 
# [[Hard-Coded Password]]
 
# [[Hard-Coded Password]]
 
# [[Heap Inspection]]
 
# [[Heap Inspection]]
 
# [[Heap overflow]]
 
# [[Heap overflow]]
 +
# [[HTTP Parameter Pollution]]
 
# [[Ignored function return value]]
 
# [[Ignored function return value]]
 
# [[Illegal Pointer Value]]
 
# [[Illegal Pointer Value]]
 
# [[Improper cleanup on thrown exception]]
 
# [[Improper cleanup on thrown exception]]
 +
# [[Improper Data Validation]]
 
# [[Improper error handling]]
 
# [[Improper error handling]]
# [[Improper Handler Deployment]]
 
# [[Improper Null Termination]]
 
# [[Improper resource shutdown or release]]
 
 
# [[Improper string length checking]]
 
# [[Improper string length checking]]
 
# [[Improper temp file opening]]
 
# [[Improper temp file opening]]
# [[Improperly Implemented Security Check for Standard]]
 
# [[Improperly Trusted Reverse DNS]]
 
# [[Improperly Verified Signature]]
 
# [[Inadvertent]]
 
# [[Incomplete Blacklist]]
 
# [[Incomplete Cleanup]]
 
# [[Incomplete Element]]
 
# [[Incomplete Internal State Distinction]]
 
# [[Inconsistent Elements]]
 
# [[Inconsistent Implementations]]
 
# [[Inconsistent Special Elements]]
 
 
# [[Incorrect block delimitation]]
 
# [[Incorrect block delimitation]]
# [[Incorrect initialization]]
+
# [[Information Leakage]]
# [[Incorrect Privilege Assignment]]
+
# [[Infoleak Using Debug Information]]
+
# [[Information Leak (information disclosure)]]
+
 
# [[Information leak through class cloning]]
 
# [[Information leak through class cloning]]
 
# [[Information leak through serialization]]
 
# [[Information leak through serialization]]
# [[Information loss or omission]]
 
# [[Initialization and Cleanup Errors]]
 
 
# [[Injection problem]]
 
# [[Injection problem]]
# [[Input Terminator]]
 
 
# [[Insecure Compiler Optimization]]
 
# [[Insecure Compiler Optimization]]
# [[Insecure Default Permissions]]
 
# [[Insecure default variable initialization]]
 
# [[Insecure execution-assigned permissions]]
 
# [[Insecure inherited permissions]]
 
# [[Insecure preserved inherited permissions]]
 
 
# [[Insecure Randomness]]
 
# [[Insecure Randomness]]
 
# [[Insecure Temporary File]]
 
# [[Insecure Temporary File]]
# [[Installation Issues]]
+
# [[Insecure Third Party Domain Access]]
 +
# [[Insecure Transport]]
 
# [[Insufficient Entropy]]
 
# [[Insufficient Entropy]]
 
# [[Insufficient entropy in pseudo-random number generator]]
 
# [[Insufficient entropy in pseudo-random number generator]]
# [[Insufficient privileges]]
+
# [[Insufficient Session-ID Length]]
# [[Insufficient Resource Locking]]
+
# [[Insufficient Resource Pool]]
+
# [[Insufficient Type Distinction]]
+
# [[Insufficient UI warning of dangerous operations]]
+
# [[Insufficient Verification of Data]]
+
 
# [[Integer coercion error]]
 
# [[Integer coercion error]]
 
# [[Integer overflow]]
 
# [[Integer overflow]]
# [[Integer underflow (wrap or wraparound)]]
 
# [[Intended information leak]]
 
# [[Interaction Errors]]
 
# [[Internal behavioral inconsistency infoleak]]
 
# [[Internal Special Element]]
 
# [[Invalid Characters in Identifiers]]
 
 
# [[Invoking untrusted mobile code]]
 
# [[Invoking untrusted mobile code]]
# [[J2EE Bad Practices: getConnection()]]
 
# [[J2EE Bad Practices: JSP Expressions]]
 
# [[J2EE Bad Practices: Sockets]]
 
# [[J2EE Bad Practices: System.exit()]]
 
# [[J2EE Bad Practices: Threads]]
 
# [[J2EE Misconfiguration: Insecure Transport]]
 
# [[J2EE Misconfiguration: Insufficient Session-ID Length]]
 
# [[J2EE Misconfiguration: Missing Error Handling]]
 
 
# [[J2EE Misconfiguration: Unsafe Bean Declaration]]
 
# [[J2EE Misconfiguration: Unsafe Bean Declaration]]
# [[J2EE Misconfiguration: Weak Access Permissions]]
 
# [[J2EE Time and State Issues]]
 
 
# [[Key exchange without entity authentication]]
 
# [[Key exchange without entity authentication]]
# [[Key management errors]]
 
# [[Leading Special Element]]
 
 
# [[Least Privilege Violation]]
 
# [[Least Privilege Violation]]
 
# [[Leftover Debug Code]]
 
# [[Leftover Debug Code]]
# [[Length Parameter Inconsistency]]
 
# [[Line Delimiter]]
 
 
# [[Log Forging]]
 
# [[Log Forging]]
 
# [[Log injection]]
 
# [[Log injection]]
# [[Mac virtual file problems]]
 
# [[Macro symbol]]
 
 
# [[Member Field Race Condition]]
 
# [[Member Field Race Condition]]
 
# [[Memory leak]]
 
# [[Memory leak]]
 
# [[Miscalculated null termination]]
 
# [[Miscalculated null termination]]
# [[Misinterpretation error]]
 
 
# [[Misinterpreted function return value]]
 
# [[Misinterpreted function return value]]
# [[Missing access control]]
+
# [[Missing Error Handling]]
# [[Missing critical step in authentication]]
+
# [[Missing element error]]
+
# [[Missing error status code]]
+
# [[Missing handler]]
+
# [[Missing initialization]]
+
# [[Missing lock check]]
+
 
# [[Missing parameter]]
 
# [[Missing parameter]]
# [[Missing required cryptographic step]]
 
# [[Missing special element]]
 
# [[Missing value error]]
 
 
# [[Missing XML Validation]]
 
# [[Missing XML Validation]]
# [[Mixed encoding]]
 
# [[Modification of assumed-immutable data]]
 
# [[Multiple failed authentication attempts not prevented]]
 
# [[Multiple internal special element]]
 
# [[Multiple interpretation error (MIE)]]
 
# [[Multiple interpretations of UI input]]
 
# [[Multiple Leading Special Elements]]
 
# [[Multiple Trailing Special Elements]]
 
 
# [[Mutable object returned]]
 
# [[Mutable object returned]]
# [[Mutable objects passed by reference]]
 
# [[No authentication for critical function]]
 
 
# [[Non-cryptographic pseudo-random number generator]]
 
# [[Non-cryptographic pseudo-random number generator]]
# [[Non-exit on failed initialization]]
 
# [[Non-replicating]]
 
 
# [[Not allowing password aging]]
 
# [[Not allowing password aging]]
 
# [[Not using a random initialization vector with cipher block chaining mode]]
 
# [[Not using a random initialization vector with cipher block chaining mode]]
# [[Null character / null byte]]
 
 
# [[Null Dereference]]
 
# [[Null Dereference]]
# [[Numeric Byte Ordering Error]]
 
# [[Numeric Errors]]
 
 
# [[Object Model Violation: Just One of equals() and hashCode() Defined]]
 
# [[Object Model Violation: Just One of equals() and hashCode() Defined]]
# [[Obscured Security-relevant Information by Alternate Name]]
 
# [[Obsolete feature in UI]]
 
# [[Off-by-one Error]]
 
 
# [[Often Misused: Authentication]]
 
# [[Often Misused: Authentication]]
 
# [[Often Misused: Exception Handling]]
 
# [[Often Misused: Exception Handling]]
 
# [[Often Misused: File System]]
 
# [[Often Misused: File System]]
# [[Often Misused: Path Manipulation]]
 
 
# [[Often Misused: Privilege Management]]
 
# [[Often Misused: Privilege Management]]
 
# [[Often Misused: String Management]]
 
# [[Often Misused: String Management]]
# [[Omission of Security-relevant Information]]
 
 
# [[Omitted break statement]]
 
# [[Omitted break statement]]
 
# [[Open forward]]
 
# [[Open forward]]
 
# [[Open redirect]]
 
# [[Open redirect]]
# [[Origin Validation Error]]
 
# [[Other length calculation error]]
 
# [[Out-of-bounds Read]]
 
 
# [[Overflow of static internal buffer]]
 
# [[Overflow of static internal buffer]]
# [[Overly Restrictive Regular Expression]]
 
 
# [[Overly-Broad Catch Block]]
 
# [[Overly-Broad Catch Block]]
 
# [[Overly-Broad Throws Declaration]]
 
# [[Overly-Broad Throws Declaration]]
# [[Ownership errors]]
 
# [[Parameter Problems]]
 
# [[Partial Comparison]]
 
 
# [[Passing mutable objects to an untrusted method]]
 
# [[Passing mutable objects to an untrusted method]]
 
# [[Password Management: Hardcoded Password]]
 
# [[Password Management: Hardcoded Password]]
 
# [[Password Management: Weak Cryptography]]
 
# [[Password Management: Weak Cryptography]]
 
# [[Password Plaintext Storage]]
 
# [[Password Plaintext Storage]]
# [[Patch Issues]]
 
# [[Path Equivalence]]
 
# [[Path Issue - asterisk wildcard - filedir*]]
 
# [[Path Issue - backslash absolute path - /absolute/pathname/here]]
 
# [[Path Issue - directory doubled dot dot backslash]]
 
# [[Path Issue - directory doubled dot dot slash]]
 
# [[Path Issue - dirname/fakechild/]]
 
# [[Path Issue - dot dot backslash]]
 
# [[Path Issue - doubled dot dot slash]]
 
# [[Path Issue - doubled triple dot slash]]
 
# [[Path Issue - drive letter or Windows volume - 'C:dirname']]
 
# [[Path Issue - internal dot - 'file.ordir']]
 
# [[Path Issue - internal space - file(SPACE)name]]
 
# [[Path Issue - leading directory dot dot backslash]]
 
# [[Path Issue - leading directory dot dot slash]]
 
# [[Path Issue - leading dot dot backslash]]
 
# [[Path Issue - leading dot dot slash]]
 
# [[Path Issue - leading space]]
 
# [[Path Issue - multiple dot]]
 
# [[Path Issue - multiple internal backslash]]
 
# [[Path Issue - multiple leading slash]]
 
# [[Path Issue - multiple trailing dot]]
 
# [[Path Issue - multiple trailing slash]]
 
# [[Path Issue - single dot directory]]
 
# [[Path Issue - slash absolute path]]
 
# [[Path Issue - trailing backslash]]
 
# [[Path Issue - trailing dot]]
 
# [[Path Issue - trailing slash]]
 
# [[Path Issue - trailing space]]
 
# [[Path Issue - triple dot]]
 
# [[Path Issue - Windows 8.3 Filename]]
 
# [[Path Issue - Windows UNC share - '/UNC/share/name/']]
 
# [[Pathname Traversal and Equivalence Errors]]
 
# [[Permission errors]]
 
# [[Permission preservation failure]]
 
# [[Permissions, Privileges, and ACLs]]
 
# [[Permissive Whitelist]]
 
# [[PHP External Variable Modification]]
 
 
# [[PHP File Inclusion]]
 
# [[PHP File Inclusion]]
# [[Plaintext Storage in Cookie]]
+
# [[Poor Logging Practice]]
# [[Plaintext Storage in Executable]]
+
# [[Plaintext Storage in File or on Disk]]
+
# [[Plaintext Storage in GUI]]
+
# [[Plaintext Storage in Memory]]
+
# [[Plaintext Storage of Sensitive Information]]
+
# [[Pointer Issues]]
+
# [[Poor Logging Practice: Logger Not Declared Static Final]]
+
# [[Poor Logging Practice: Multiple Loggers]]
+
# [[Poor Logging Practice: Use of a System Output Stream]]
+
# [[Poor Style: Confusing Naming]]
+
# [[Poor Style: Empty Synchronized Block]]
+
# [[Poor Style: Explicit call to finalize()]]
+
# [[Poor Style: Identifier Contains Dollar Symbol ($)]]
+
 
# [[Portability Flaw]]
 
# [[Portability Flaw]]
# [[Porting Issues]]
 
# [[Predictability problems]]
 
# [[Predictable Exact Value from Previous Values]]
 
# [[Predictable from Observable State]]
 
# [[Predictable Seed in PRNG]]
 
# [[Predictable Value Range from Previous Values]]
 
 
# [[Privacy Violation]]
 
# [[Privacy Violation]]
# [[Private Array-Typed Field Returned From A Public Method]]
 
# [[Privilege / sandbox errors]]
 
# [[Privilege Chaining]]
 
# [[Privilege Context Switching Error]]
 
# [[Privilege Dropping / Lowering Errors]]
 
# [[Privilege Management Error]]
 
 
# [[PRNG Seed Error]]
 
# [[PRNG Seed Error]]
 
# [[Process Control]]
 
# [[Process Control]]
# [[Process information infoleak to other processes]]
 
# [[Product UI does not warn user of unsafe actions]]
 
# [[Product-External Error Message Infoleak]]
 
# [[Product-Generated Error Message Infoleak]]
 
# [[Proxied Trusted Channel]]
 
# [[Public Data Assigned to Private Array-Typed Field]]
 
 
# [[Publicizing of private data when using inner classes]]
 
# [[Publicizing of private data when using inner classes]]
# [[Quoting Element]]
 
# [[Race condition enabling link following]]
 
# [[Race condition in checking for certificate revocation]]
 
# [[Race condition in signal handler]]
 
# [[Race condition in switch]]
 
# [[Race condition within a thread]]
 
 
# [[Race Conditions]]
 
# [[Race Conditions]]
# [[Randomness and Predictability]]
 
# [[Record Delimiter]]
 
 
# [[Reflection attack in an auth protocol]]
 
# [[Reflection attack in an auth protocol]]
 
# [[Reflection injection]]
 
# [[Reflection injection]]
# [[Regular Expression Error]]
 
 
# [[Relative path library search]]
 
# [[Relative path library search]]
 
# [[Reliance on data layout]]
 
# [[Reliance on data layout]]
 
# [[Relying on package-level scope]]
 
# [[Relying on package-level scope]]
# [[Representation Errors]]
 
# [[Requirements Issues]]
 
 
# [[Resource exhaustion]]
 
# [[Resource exhaustion]]
# [[Resource leaks]]
 
# [[Resource Locking problems]]
 
# [[Resource Management Errors]]
 
# [[Response discrepancy infoleak]]
 
 
# [[Return Inside Finally Block]]
 
# [[Return Inside Finally Block]]
 
# [[Reusing a nonce, key pair in encryption]]
 
# [[Reusing a nonce, key pair in encryption]]
# [[Reversible One-Way Hash]]
+
# [[Session_Fixation]]
# [[Same Seed in PRNG]]
+
# [[Section Delimiter]]
+
# [[Sensitive Data Under FTP Root]]
+
# [[Sensitive Data Under Web Root]]
+
# [[Sensitive Information Uncleared Before Use]]
+
# [[Session Fixation]]
+
 
# [[Sign extension error]]
 
# [[Sign extension error]]
# [[Signal Errors]]
 
 
# [[Signed to unsigned conversion error]]
 
# [[Signed to unsigned conversion error]]
# [[Small Seed Space in PRNG]]
 
# [[Small Space of Random Values]]
 
 
# [[Stack overflow]]
 
# [[Stack overflow]]
 
# [[State synchronization error]]
 
# [[State synchronization error]]
# [[Static Value in Unpredictable Context]]
 
 
# [[Storing passwords in a recoverable format]]
 
# [[Storing passwords in a recoverable format]]
 
# [[String Termination Error]]
 
# [[String Termination Error]]
# [[Struts: Duplicate Validation Forms]]
 
# [[Struts: Erroneous validate() Method]]
 
# [[Struts: Form Bean Does Not Extend Validation Class]]
 
# [[Struts: Form Does Not Extend Validation Class]]
 
# [[Struts: Form Field Without Validator]]
 
# [[Struts: Plug-in Framework Not In Use]]
 
# [[Struts: Unused Validation Form]]
 
# [[Struts: Unvalidated Action Form]]
 
# [[Struts: Validator Turned Off]]
 
# [[Struts: Validator Without Form Field]]
 
# [[Substitution Character]]
 
 
# [[Symbolic name not mapping to correct object]]
 
# [[Symbolic name not mapping to correct object]]
# [[System Configuration Issues]]
 
# [[System Information Leak]]
 
# [[System Information Leak: Missing Catch Block]]
 
# [[System Operations Issues]]
 
# [[Technology-specific Environment Issues]]
 
# [[Technology-Specific Input Validation Problems]]
 
# [[Technology-Specific Special Elements]]
 
# [[Technology-Specific Time and State Issues]]
 
 
# [[Template:Vulnerability]]
 
# [[Template:Vulnerability]]
# [[Temporary File Issues]]
 
# [[Testing Issues]]
 
# [[The UI performs the wrong action]]
 
# [[Time and State]]
 
# [[Time of check, time of use race condition]]
 
# [[Time of Introduction]]
 
# [[Time-of-check Time-of-use race condition]]
 
# [[Timing discrepancy infoleak]]
 
# [[Trailing Special Element]]
 
# [[Trapdoor]]
 
 
# [[Truncation error]]
 
# [[Truncation error]]
# [[Truncation of Security-relevant Information]]
 
 
# [[Trust Boundary Violation]]
 
# [[Trust Boundary Violation]]
 
# [[Trust of system event data]]
 
# [[Trust of system event data]]
 
# [[Trusting self-reported DNS name]]
 
# [[Trusting self-reported DNS name]]
 
# [[Trusting self-reported IP address]]
 
# [[Trusting self-reported IP address]]
# [[UI Misrepresentation of Critical Information]]
 
 
# [[Uncaught exception]]
 
# [[Uncaught exception]]
 
# [[Unchecked array indexing]]
 
# [[Unchecked array indexing]]
 
# [[Unchecked Return Value: Missing Check against Null]]
 
# [[Unchecked Return Value: Missing Check against Null]]
# [[Uncontrolled Search Path Element]]
 
 
# [[Undefined Behavior]]
 
# [[Undefined Behavior]]
# [[Undefined Parameter Error]]
 
# [[Undefined Value Error]]
 
# [[Unexpected Status Code or Return Value]]
 
# [[Unimplemented or unsupported feature in UI]]
 
 
# [[Uninitialized Variable]]
 
# [[Uninitialized Variable]]
# [[Unintended proxy/intermediary]]
 
 
# [[Unintentional pointer scaling]]
 
# [[Unintentional pointer scaling]]
# [[UNIX file descriptor leak]]
 
# [[UNIX hard link]]
 
# [[UNIX Path Link problems]]
 
# [[UNIX symbolic link (symlink) following]]
 
# [[Unparsed Raw Web Content Delivery]]
 
# [[Unprotected Alternate Channel]]
 
# [[Unprotected Primary Channel]]
 
# [[Unquoted Search Path or Element]]
 
 
# [[Unreleased Resource]]
 
# [[Unreleased Resource]]
# [[Unrestricted Critical Resource Lock]]
 
 
# [[Unrestricted File Upload]]
 
# [[Unrestricted File Upload]]
 
# [[Unsafe function call from a signal handler]]
 
# [[Unsafe function call from a signal handler]]
 
# [[Unsafe JNI]]
 
# [[Unsafe JNI]]
# [[Unsafe Mobile Code: Access Violation]]
+
# [[Unsafe Mobile Code]]
# [[Unsafe Mobile Code: Dangerous Array Declaration]]
+
# [[Unsafe Mobile Code: Dangerous Public Field]]
+
# [[Unsafe Mobile Code: Inner Class]]
+
# [[Unsafe Mobile Code: Public finalize() Method]]
+
# [[Unsafe Privilege]]
+
 
# [[Unsafe Reflection]]
 
# [[Unsafe Reflection]]
 
# [[Unsigned to signed conversion error]]
 
# [[Unsigned to signed conversion error]]
# [[Untrusted Data Appended with Trusted Data]]
 
# [[Unverified Ownership]]
 
# [[URL Encoding (Hex Encoding)]]
 
 
# [[Use of hard-coded password]]
 
# [[Use of hard-coded password]]
# [[Use of Less Trusted Source]]
 
 
# [[Use of Obsolete Methods]]
 
# [[Use of Obsolete Methods]]
 
# [[Use of sizeof() on a pointer type]]
 
# [[Use of sizeof() on a pointer type]]
# [[User interface inconsistency]]
 
# [[User Interface Quality Errors]]
 
# [[User Interface Security Errors]]
 
# [[User management errors]]
 
 
# [[Using a broken or risky cryptographic algorithm]]
 
# [[Using a broken or risky cryptographic algorithm]]
 
# [[Using a key past its expiration date]]
 
# [[Using a key past its expiration date]]
Line 465: Line 157:
 
# [[Using single-factor authentication]]
 
# [[Using single-factor authentication]]
 
# [[Using the wrong operator]]
 
# [[Using the wrong operator]]
# [[Validate-Before-Canonicalize]]
 
# [[Validate-Before-Filter]]
 
 
# [[Validation performed in client]]
 
# [[Validation performed in client]]
# [[Value Delimiter]]
 
# [[Value Problems]]
 
# [[Variable Name Delimiter]]
 
# [[Virtual Files]]
 
# [[Weak credentials]]
 
# [[Weak Encryption]]
 
 
# [[Wrap-around error]]
 
# [[Wrap-around error]]
 
# [[Write-what-where condition]]
 
# [[Write-what-where condition]]
# [[Wrong Data Type]]
 
# [[Wrong Status Code]]
 
 
Back to [[ASDR_Table_of_Contents|TOC]]
 
  
 
[[Category:OWASP ASDR Project]]
 
[[Category:OWASP ASDR Project]]

Revision as of 04:18, 11 July 2012

  1. Access control enforced by presentation layer
  2. Addition of data-structure sentinel
  3. Allowing password aging
  4. ASP.NET Misconfigurations
  5. Assigning instead of comparing
  6. Authentication Bypass via Assumed-Immutable Data
  7. Buffer Overflow
  8. Buffer underwrite
  9. Business logic vulnerability
  10. Capture-replay
  11. Catch NullPointerException
  12. Comparing classes by name
  13. Comparing instead of assigning
  14. Comprehensive list of Threats to Authentication Procedures and Data
  15. Covert timing channel
  16. CRLF Injection
  17. Cross Site Scripting Flaw
  18. Dangerous Function
  19. Deletion of data-structure sentinel
  20. Deserialization of untrusted data
  21. Directory Restriction Error
  22. Double Free
  23. Doubly freeing memory
  24. Duplicate key in associative list (alist)
  25. Empty Catch Block
  26. Empty String Password
  27. Failure of true random number generator
  28. Failure to account for default case in switch
  29. Failure to add integrity check value
  30. Failure to check for certificate revocation
  31. Failure to check integrity check value
  32. Failure to check whether privileges were dropped successfully
  33. Failure to deallocate data
  34. Failure to drop privileges when reasonable
  35. Failure to encrypt data
  36. Failure to follow chain of trust in certificate validation
  37. Failure to follow guideline/specification
  38. Failure to protect stored data from modification
  39. Failure to provide confidentiality for stored data
  40. Failure to validate certificate expiration
  41. Failure to validate host-specific certificate data
  42. File Access Race Condition: TOCTOU
  43. Format String
  44. Guessed or visible temporary file
  45. Hard-Coded Password
  46. Heap Inspection
  47. Heap overflow
  48. HTTP Parameter Pollution
  49. Ignored function return value
  50. Illegal Pointer Value
  51. Improper cleanup on thrown exception
  52. Improper Data Validation
  53. Improper error handling
  54. Improper string length checking
  55. Improper temp file opening
  56. Incorrect block delimitation
  57. Information Leakage
  58. Information leak through class cloning
  59. Information leak through serialization
  60. Injection problem
  61. Insecure Compiler Optimization
  62. Insecure Randomness
  63. Insecure Temporary File
  64. Insecure Third Party Domain Access
  65. Insecure Transport
  66. Insufficient Entropy
  67. Insufficient entropy in pseudo-random number generator
  68. Insufficient Session-ID Length
  69. Integer coercion error
  70. Integer overflow
  71. Invoking untrusted mobile code
  72. J2EE Misconfiguration: Unsafe Bean Declaration
  73. Key exchange without entity authentication
  74. Least Privilege Violation
  75. Leftover Debug Code
  76. Log Forging
  77. Log injection
  78. Member Field Race Condition
  79. Memory leak
  80. Miscalculated null termination
  81. Misinterpreted function return value
  82. Missing Error Handling
  83. Missing parameter
  84. Missing XML Validation
  85. Mutable object returned
  86. Non-cryptographic pseudo-random number generator
  87. Not allowing password aging
  88. Not using a random initialization vector with cipher block chaining mode
  89. Null Dereference
  90. Object Model Violation: Just One of equals() and hashCode() Defined
  91. Often Misused: Authentication
  92. Often Misused: Exception Handling
  93. Often Misused: File System
  94. Often Misused: Privilege Management
  95. Often Misused: String Management
  96. Omitted break statement
  97. Open forward
  98. Open redirect
  99. Overflow of static internal buffer
  100. Overly-Broad Catch Block
  101. Overly-Broad Throws Declaration
  102. Passing mutable objects to an untrusted method
  103. Password Management: Hardcoded Password
  104. Password Management: Weak Cryptography
  105. Password Plaintext Storage
  106. PHP File Inclusion
  107. Poor Logging Practice
  108. Portability Flaw
  109. Privacy Violation
  110. PRNG Seed Error
  111. Process Control
  112. Publicizing of private data when using inner classes
  113. Race Conditions
  114. Reflection attack in an auth protocol
  115. Reflection injection
  116. Relative path library search
  117. Reliance on data layout
  118. Relying on package-level scope
  119. Resource exhaustion
  120. Return Inside Finally Block
  121. Reusing a nonce, key pair in encryption
  122. Session_Fixation
  123. Sign extension error
  124. Signed to unsigned conversion error
  125. Stack overflow
  126. State synchronization error
  127. Storing passwords in a recoverable format
  128. String Termination Error
  129. Symbolic name not mapping to correct object
  130. Template:Vulnerability
  131. Truncation error
  132. Trust Boundary Violation
  133. Trust of system event data
  134. Trusting self-reported DNS name
  135. Trusting self-reported IP address
  136. Uncaught exception
  137. Unchecked array indexing
  138. Unchecked Return Value: Missing Check against Null
  139. Undefined Behavior
  140. Uninitialized Variable
  141. Unintentional pointer scaling
  142. Unreleased Resource
  143. Unrestricted File Upload
  144. Unsafe function call from a signal handler
  145. Unsafe JNI
  146. Unsafe Mobile Code
  147. Unsafe Reflection
  148. Unsigned to signed conversion error
  149. Use of hard-coded password
  150. Use of Obsolete Methods
  151. Use of sizeof() on a pointer type
  152. Using a broken or risky cryptographic algorithm
  153. Using a key past its expiration date
  154. Using freed memory
  155. Using password systems
  156. Using referer field for authentication or authorization
  157. Using single-factor authentication
  158. Using the wrong operator
  159. Validation performed in client
  160. Wrap-around error
  161. Write-what-where condition