Difference between revisions of "ASDR TOC Vulnerabilities"

From OWASP
Jump to: navigation, search
Line 12: Line 12:
 
# [[ASP.NET Misconfiguration: Password in Configuration File]]
 
# [[ASP.NET Misconfiguration: Password in Configuration File]]
 
# [[Assigning instead of comparing]]
 
# [[Assigning instead of comparing]]
# [[Authentication Bypass by Primary Weakness]]
 
 
# [[Authentication Bypass via Assumed-Immutable Data]]
 
# [[Authentication Bypass via Assumed-Immutable Data]]
 
# [[Behavioral Change]]
 
# [[Behavioral Change]]

Revision as of 15:29, 28 January 2009


This page was marked to be reviewed for deletion.


Back to TOC

  1. Access control enforced by presentation layer
  2. Accidental leaking of sensitive information through data queries
  3. Accidental leaking of sensitive information through error messages
  4. Accidental leaking of sensitive information through sent data
  5. Addition of data-structure sentinel
  6. Allowing password aging
  7. ASP.NET Misconfiguration: Creating Debug Binary
  8. ASP.NET Misconfiguration: Missing Custom Error Handling
  9. ASP.NET Misconfiguration: Password in Configuration File
  10. Assigning instead of comparing
  11. Authentication Bypass via Assumed-Immutable Data
  12. Behavioral Change
  13. Behavioral Discrepancy Infoleak
  14. Behavioral problems
  15. Buffer Overflow
  16. Buffer over-read
  17. Buffer under-read
  18. Buffer underwrite
  19. Bundling Issues
  20. Byte/Object Code
  21. Capture-replay
  22. Case Sensitivity (lowercase, uppercase, mixed case)
  23. Catch NullPointerException
  24. Channel and Path Errors
  25. Cleansing, Canonicalization, and Comparison Errors
  26. Code Correctness: Call to System.gc()
  27. Code Correctness: Call to Thread.run()
  28. Code Correctness: Class Does Not Implement Cloneable
  29. Code Correctness: Double-Checked Locking
  30. Code Correctness: Erroneous finalize() Method
  31. Code Correctness: Erroneous String Compare
  32. Code Correctness: Misspelled Method Name
  33. Code Correctness: null Argument to equals()
  34. Collapse of Data into Unsafe Value
  35. Common Special Element Manipulations
  36. Comparing classes by name
  37. Comparing instead of assigning
  38. Comprehensive list of Threats to Authentication Procedures and Data
  39. Context Switching Race Condition
  40. Covert timing channel
  41. CRLF Injection
  42. Cross Site Scripting Flaw
  43. Cross-Boundary Cleansing Infoleak
  44. Dangerous Function
  45. Dangerous handler not cleared/disabled during sensitive operations
  46. Data Amplification
  47. Data Leaking Between Users
  48. Data Structure Issues
  49. Dead Code: Broken Override
  50. Dead Code: Expression is Always False
  51. Dead Code: Expression is Always True
  52. Dead Code: Unused Field
  53. Dead Code: Unused Method
  54. Deletion of data-structure sentinel
  55. Delimiter between Expressions or Commands
  56. Delimiter Problems
  57. Deserialization of untrusted data
  58. Directory Restriction Error
  59. Discrepancy Information Leaks
  60. Double Free
  61. Doubled character XSS manipulations
  62. Doubly freeing memory
  63. Duplicate key in associative list (alist)
  64. Early Amplification
  65. EJB Bad Practices: Use of AWT/Swing
  66. EJB Bad Practices: Use of Class Loader
  67. EJB Bad Practices: Use of java.io
  68. EJB Bad Practices: Use of Sockets
  69. EJB Bad Practices: Use of Synchronization Primitives
  70. Empty Catch Block
  71. Empty String Password
  72. Error Conditions, Return Values, Status Codes
  73. Error Message Infoleaks
  74. Escape, Meta, or Control Character / Sequence
  75. Expected behavior violation
  76. External behavioral inconsistency infoleak
  77. External initialization of trusted variables or values
  78. Extra Parameter Error
  79. Extra Special Element
  80. Extra Unhandled Features
  81. Extra Value Error
  82. Fails poorly due to insufficient permissions
  83. Failure of true random number generator
  84. Failure to account for default case in switch
  85. Failure to add integrity check value
  86. Failure to check for certificate revocation
  87. Failure to check integrity check value
  88. Failure to check whether privileges were dropped successfully
  89. Failure to deallocate data
  90. Failure to drop privileges when reasonable
  91. Failure to encrypt data
  92. Failure to follow chain of trust in certificate validation
  93. Failure to protect stored data from modification
  94. Failure to provide confidentiality for stored data
  95. Failure to validate certificate expiration
  96. Failure to validate host-specific certificate data
  97. File Access Race Condition: TOCTOU
  98. Format String
  99. General Special Element Problems
  100. Grouping Element / Paired Delimiter
  101. Guessed or visible temporary file
  102. Hard-Coded Password
  103. Heap Inspection
  104. Heap overflow
  105. Ignored function return value
  106. Illegal Pointer Value
  107. Improper cleanup on thrown exception
  108. Improper error handling
  109. Improper Handler Deployment
  110. Improper Null Termination
  111. Improper resource shutdown or release
  112. Improper string length checking
  113. Improper temp file opening
  114. Improperly Implemented Security Check for Standard
  115. Improperly Trusted Reverse DNS
  116. Improperly Verified Signature
  117. Incomplete Blacklist
  118. Incomplete Cleanup
  119. Incomplete Element
  120. Incomplete Internal State Distinction
  121. Inconsistent Implementations
  122. Inconsistent Special Elements
  123. Incorrect block delimitation
  124. Incorrect initialization
  125. Incorrect Privilege Assignment
  126. Infoleak Using Debug Information
  127. Information Leak (information disclosure)
  128. Information leak through class cloning
  129. Information leak through serialization
  130. Information loss or omission
  131. Initialization and Cleanup Errors
  132. Injection problem
  133. Input Terminator
  134. Insecure Compiler Optimization
  135. Insecure Default Permissions
  136. Insecure default variable initialization
  137. Insecure execution-assigned permissions
  138. Insecure inherited permissions
  139. Insecure preserved inherited permissions
  140. Insecure Randomness
  141. Insecure Temporary File
  142. Insecure Third Party Domain Access
  143. Installation Issues
  144. Insufficient Entropy
  145. Insufficient entropy in pseudo-random number generator
  146. Insufficient privileges
  147. Insufficient Resource Locking
  148. Insufficient Resource Pool
  149. Insufficient Type Distinction
  150. Insufficient UI warning of dangerous operations
  151. Insufficient Verification of Data
  152. Integer coercion error
  153. Integer overflow
  154. Intended information leak
  155. Interaction Errors
  156. Internal behavioral inconsistency infoleak
  157. Internal Special Element
  158. Invalid Characters in Identifiers
  159. Invoking untrusted mobile code
  160. J2EE Bad Practices: getConnection()
  161. J2EE Bad Practices: JSP Expressions
  162. J2EE Bad Practices: Sockets
  163. J2EE Bad Practices: System.exit()
  164. J2EE Bad Practices: Threads
  165. J2EE Misconfiguration: Insecure Transport
  166. J2EE Misconfiguration: Insufficient Session-ID Length
  167. J2EE Misconfiguration: Missing Error Handling
  168. J2EE Misconfiguration: Unsafe Bean Declaration
  169. J2EE Misconfiguration: Weak Access Permissions
  170. J2EE Time and State Issues
  171. Key exchange without entity authentication
  172. Key management errors
  173. Leading Special Element
  174. Least Privilege Violation
  175. Leftover Debug Code
  176. Length Parameter Inconsistency
  177. Line Delimiter
  178. Log Forging
  179. Log injection
  180. Mac virtual file problems
  181. Macro symbol
  182. Member Field Race Condition
  183. Memory leak
  184. Miscalculated null termination
  185. Misinterpretation error
  186. Misinterpreted function return value
  187. Missing access control
  188. Missing critical step in authentication
  189. Missing element error
  190. Missing error status code
  191. Missing handler
  192. Missing initialization
  193. Missing lock check
  194. Missing parameter
  195. Missing required cryptographic step
  196. Missing special element
  197. Missing value error
  198. Missing XML Validation
  199. Mixed encoding
  200. Modification of assumed-immutable data
  201. Multiple failed authentication attempts not prevented
  202. Multiple internal special element
  203. Multiple interpretation error (MIE)
  204. Multiple interpretations of UI input
  205. Multiple Leading Special Elements
  206. Multiple Trailing Special Elements
  207. Mutable object returned
  208. Mutable objects passed by reference
  209. No authentication for critical function
  210. Non-cryptographic pseudo-random number generator
  211. Non-exit on failed initialization
  212. Non-replicating
  213. Not allowing password aging
  214. Not using a random initialization vector with cipher block chaining mode
  215. Null character / null byte
  216. Null Dereference
  217. Numeric Byte Ordering Error
  218. Numeric Errors
  219. Object Model Violation: Just One of equals() and hashCode() Defined
  220. Obscured Security-relevant Information by Alternate Name
  221. Obsolete feature in UI
  222. Off-by-one Error
  223. Often Misused: Authentication
  224. Often Misused: Exception Handling
  225. Often Misused: File System
  226. Often Misused: Path Manipulation
  227. Often Misused: Privilege Management
  228. Often Misused: String Management
  229. Omission of Security-relevant Information
  230. Omitted break statement
  231. Open forward
  232. Open redirect
  233. Origin Validation Error
  234. Other length calculation error
  235. Out-of-bounds Read
  236. Overflow of static internal buffer
  237. Overly Restrictive Regular Expression
  238. Overly-Broad Catch Block
  239. Overly-Broad Throws Declaration
  240. Ownership errors
  241. Parameter Problems
  242. Partial Comparison
  243. Passing mutable objects to an untrusted method
  244. Password Management: Hardcoded Password
  245. Password Management: Weak Cryptography
  246. Password Plaintext Storage
  247. Patch Issues
  248. Path Equivalence
  249. Path Issue - asterisk wildcard - filedir*
  250. Path Issue - backslash absolute path - /absolute/pathname/here
  251. Path Issue - directory doubled dot dot backslash
  252. Path Issue - directory doubled dot dot slash
  253. Path Issue - dirname/fakechild/
  254. Path Issue - dot dot backslash
  255. Path Issue - doubled dot dot slash
  256. Path Issue - doubled triple dot slash
  257. Path Issue - drive letter or Windows volume - 'C:dirname'
  258. Path Issue - internal dot - 'file.ordir'
  259. Path Issue - internal space - file(SPACE)name
  260. Path Issue - leading directory dot dot backslash
  261. Path Issue - leading directory dot dot slash
  262. Path Issue - leading dot dot backslash
  263. Path Issue - leading dot dot slash
  264. Path Issue - leading space
  265. Path Issue - multiple dot
  266. Path Issue - multiple internal backslash
  267. Path Issue - multiple leading slash
  268. Path Issue - multiple trailing dot
  269. Path Issue - multiple trailing slash
  270. Path Issue - single dot directory
  271. Path Issue - slash absolute path
  272. Path Issue - trailing backslash
  273. Path Issue - trailing dot
  274. Path Issue - trailing slash
  275. Path Issue - trailing space
  276. Path Issue - triple dot
  277. Path Issue - Windows 8.3 Filename
  278. Path Issue - Windows UNC share - '/UNC/share/name/'
  279. Pathname Traversal and Equivalence Errors
  280. Permission errors
  281. Permission preservation failure
  282. Permissions, Privileges, and ACLs
  283. Permissive Whitelist
  284. PHP External Variable Modification
  285. PHP File Inclusion
  286. Plaintext Storage in Cookie
  287. Plaintext Storage in Executable
  288. Plaintext Storage in File or on Disk
  289. Plaintext Storage in GUI
  290. Plaintext Storage in Memory
  291. Plaintext Storage of Sensitive Information
  292. Pointer Issues
  293. Poor Logging Practice: Logger Not Declared Static Final
  294. Poor Logging Practice: Multiple Loggers
  295. Poor Logging Practice: Use of a System Output Stream
  296. Poor Style: Confusing Naming
  297. Poor Style: Empty Synchronized Block
  298. Poor Style: Explicit call to finalize()
  299. Poor Style: Identifier Contains Dollar Symbol ($)
  300. Portability Flaw
  301. Porting Issues
  302. Predictability problems
  303. Predictable Exact Value from Previous Values
  304. Predictable from Observable State
  305. Predictable Seed in PRNG
  306. Predictable Value Range from Previous Values
  307. Privacy Violation
  308. Private Array-Typed Field Returned From A Public Method
  309. Privilege / sandbox errors
  310. Privilege Chaining
  311. Privilege Context Switching Error
  312. Privilege Dropping / Lowering Errors
  313. Privilege Management Error
  314. PRNG Seed Error
  315. Process Control
  316. Process information infoleak to other processes
  317. Product UI does not warn user of unsafe actions
  318. Product-External Error Message Infoleak
  319. Product-Generated Error Message Infoleak
  320. Proxied Trusted Channel
  321. Public Data Assigned to Private Array-Typed Field
  322. Publicizing of private data when using inner classes
  323. Quoting Element
  324. Race condition enabling link following
  325. Race condition in checking for certificate revocation
  326. Race condition in signal handler
  327. Race condition in switch
  328. Race condition within a thread
  329. Race Conditions
  330. Randomness and Predictability
  331. Record Delimiter
  332. Reflection attack in an auth protocol
  333. Reflection injection
  334. Regular Expression Error
  335. Relative path library search
  336. Reliance on data layout
  337. Relying on package-level scope
  338. Representation Errors
  339. Requirements Issues
  340. Resource exhaustion
  341. Resource leaks
  342. Resource Locking problems
  343. Resource Management Errors
  344. Response discrepancy infoleak
  345. Return Inside Finally Block
  346. Reusing a nonce, key pair in encryption
  347. Reversible One-Way Hash
  348. Same Seed in PRNG
  349. Section Delimiter
  350. Sensitive Data Under FTP Root
  351. Sensitive Data Under Web Root
  352. Sensitive Information Uncleared Before Use
  353. Session Fixation
  354. Sign extension error
  355. Signal Errors
  356. Signed to unsigned conversion error
  357. Small Seed Space in PRNG
  358. Small Space of Random Values
  359. Stack overflow
  360. State synchronization error
  361. Static Value in Unpredictable Context
  362. Storing passwords in a recoverable format
  363. String Termination Error
  364. Struts: Duplicate Validation Forms
  365. Struts: Erroneous validate() Method
  366. Struts: Form Bean Does Not Extend Validation Class
  367. Struts: Form Does Not Extend Validation Class
  368. Struts: Form Field Without Validator
  369. Struts: Plug-in Framework Not In Use
  370. Struts: Unused Validation Form
  371. Struts: Unvalidated Action Form
  372. Struts: Validator Turned Off
  373. Struts: Validator Without Form Field
  374. Substitution Character
  375. Symbolic name not mapping to correct object
  376. System Configuration Issues
  377. System Information Leak
  378. System Information Leak: Missing Catch Block
  379. System Operations Issues
  380. Technology-specific Environment Issues
  381. Technology-Specific Input Validation Problems
  382. Technology-Specific Special Elements
  383. Technology-Specific Time and State Issues
  384. Template:Vulnerability
  385. Temporary File Issues
  386. Testing Issues
  387. The UI performs the wrong action
  388. Time and State
  389. Time of check, time of use race condition
  390. Time of Introduction
  391. Time-of-check Time-of-use race condition
  392. Timing discrepancy infoleak
  393. Trailing Special Element
  394. Trapdoor
  395. Truncation error
  396. Truncation of Security-relevant Information
  397. Trust Boundary Violation
  398. Trust of system event data
  399. Trusting self-reported DNS name
  400. Trusting self-reported IP address
  401. UI Misrepresentation of Critical Information
  402. Uncaught exception
  403. Unchecked array indexing
  404. Unchecked Return Value: Missing Check against Null
  405. Uncontrolled Search Path Element
  406. Undefined Behavior
  407. Undefined Parameter Error
  408. Undefined Value Error
  409. Unexpected Status Code or Return Value
  410. Unimplemented or unsupported feature in UI
  411. Uninitialized Variable
  412. Unintended proxy/intermediary
  413. Unintentional pointer scaling
  414. UNIX file descriptor leak
  415. UNIX hard link
  416. UNIX Path Link problems
  417. UNIX symbolic link (symlink) following
  418. Unparsed Raw Web Content Delivery
  419. Unprotected Alternate Channel
  420. Unprotected Primary Channel
  421. Unquoted Search Path or Element
  422. Unreleased Resource
  423. Unrestricted Critical Resource Lock
  424. Unrestricted File Upload
  425. Unsafe function call from a signal handler
  426. Unsafe JNI
  427. Unsafe Mobile Code: Access Violation
  428. Unsafe Mobile Code: Dangerous Array Declaration
  429. Unsafe Mobile Code: Dangerous Public Field
  430. Unsafe Mobile Code: Inner Class
  431. Unsafe Mobile Code: Public finalize() Method
  432. Unsafe Privilege
  433. Unsafe Reflection
  434. Unsigned to signed conversion error
  435. Untrusted Data Appended with Trusted Data
  436. Unverified Ownership
  437. URL Encoding (Hex Encoding)
  438. Use of hard-coded password
  439. Use of Less Trusted Source
  440. Use of Obsolete Methods
  441. Use of sizeof() on a pointer type
  442. User interface inconsistency
  443. User Interface Quality Errors
  444. User Interface Security Errors
  445. User management errors
  446. Using a broken or risky cryptographic algorithm
  447. Using a key past its expiration date
  448. Using freed memory
  449. Using password systems
  450. Using referer field for authentication or authorization
  451. Using single-factor authentication
  452. Using the wrong operator
  453. Validate-Before-Canonicalize
  454. Validate-Before-Filter
  455. Validation performed in client
  456. Value Delimiter
  457. Value Problems
  458. Variable Name Delimiter
  459. Virtual Files
  460. Weak credentials
  461. Weak Encryption
  462. Wrap-around error
  463. Write-what-where condition
  464. Wrong Data Type
  465. Wrong Status Code

Back to TOC