[Forgot Password]
Login  Register Subscribe

25354

 
 

132805

 
 

140669

 
 

909

 
 

113959

 
 

156

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 909 Download | Alert*

The product does not require that users should have strong passwords, which makes it easier for attackers to compromise user accounts.

The product does not validate or incorrectly validates input that can affect the control flow or data flow of a program.

The software writes data past the end, or before the beginning, of the intended buffer.

The product downloads source code or an executable from a remote location and executes the code without sufficiently verifying the origin and integrity of the code.

The software does not validate or incorrectly validates the integrity check values or "checksums" of a message. This may prevent it from detecting if the data has been modified or corrupted in transmission.

The software does not sufficiently delimit the arguments being passed to a component in another control sphere, allowing alternate arguments to be provided, leading to potentially security-relevant changes.

The software, upon installation, sets incorrect permissions for an object that exposes it to an unintended actor.

The software stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required.

The product does not properly transfer a resource/behavior to another sphere, or improperly imports a resource/behavior from another sphere, in a manner that provides unintended control over that resource.

The software does not correctly calculate the size to be used when allocating a buffer, which could lead to a buffer overflow.


Pages:      Start    1    2    3    4    5    6    7    8    9    10    11    12    13    14    ..   90

© SecPod Technologies