![]() SEI CERT C Coding Standard - Guidelines 06. SEI CERT C Coding Standard - Guidelines 03. SFP Secondary Cluster: Faulty Buffer Access In addition, relationships such as PeerOf and CanAlsoBe are defined to show similar weaknesses that the user may want to explore.Ĭategory - a CWE entry that contains a set of other entries that share a common characteristic. These relationships are defined as ChildOf, ParentOf, MemberOf and give insight to similar items that may exist at higher and lower levels of abstraction. This table shows the weaknesses and high level categories that are related to this weakness. ![]() Base level weaknesses typically describe issues in terms of 2 or 3 of the following dimensions: behavior, property, technology, language, and resource. That is still mostly independent of a resource or technology, but with sufficient details to provide specific methods for detection and prevention. Variant level weaknesses typically describe issues in terms of 3 to 5 of the following dimensions: behavior, property, technology, language, and resource. That is linked to a certain type of product, typically involving a specific language or technology. ![]() Improper Restriction of Operations within the Bounds of a Memory Buffer Class level weaknesses typically describe issues in terms of 1 or 2 of the following dimensions: behavior, property, and resource. More specific than a Pillar Weakness, but more general than a Base Weakness. Class - a weakness that is described in a very abstract fashion, typically independent of any specific language or technology.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |