2011 CWE-SANS Top 25 Most Dangerous Software Errors mapped to Klocwork checkers
From current
Reference > Coding standards > 2011 CWE-SANS Top 25 Most Dangerous Software Errors mapped to Klocwork checkers
| Rank | CWE ID | Description | Klocwork Issue Code |
|---|---|---|---|
| 1 | 89 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') | SV.SQL SV.SQL.DBSOURCE SV.DATA.DB |
| 2 | 78 | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') | NNTS.TAINTED SV.TAINTED.INJECTION |
| 3 | 120 | Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') | ABR NNTS.TAINTED SV.STRBO.UNBOUND_COPY SV.STRBO.UNBOUND_SPRINTF |
| 4 | 79 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | SV.XSS.DB SV.DATA.DB SV.XSS.REF |
| 5 | 306 | Missing Authentication for Critical Function | Although it is possible to use static analysis to detect authorization issues, such analysis requires scanning of configuration files, which is outside the scope of Insight analysis. In general, static analysis tools have difficulty producing a viable checker for detecting custom authorization schemes. |
| 6 | 862 | Missing Authorization | Although it is possible to use static analysis to detect authorization issues, such analysis requires scanning with a further context, which is outside the scope of Insight analysis. In general, static analysis tools have difficulty producing a viable checker for detecting custom authorization schemes. |
| 7 | 798 | Use of Hard-coded Credentials | SV.PASSWD.HC |
| 8 | 311 | Missing Encryption of Sensitive Data | Not statically verifiable. Manual inspection is required. |
| 9 | 434 | Unrestricted Upload of File with Dangerous Type | Not statically verifiable. Typically associated with PHP or ASP.NET code. |
| 10 | 807 | Reliance on Untrusted Inputs in a Security Decision | Not statically verifiable. Manual inspection of untrusted inputs is required. |
| 11 | 250 | Execution with Unnecessary Privileges | SV.USAGERULES.PERMISSIONS |
| 12 | 352 | Cross-Site Request Forgery (CSRF) | It is very difficult for static analysis to identify any CSRF issues, because each application has its own implicit security policy that dictates which requests can be influenced by an outsider. |
| 13 | 22 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') | SV.DLLPRELOAD.NONABSOLUTE.DLL |
| 14 | 494 | Download of Code Without Integrity Check | Not statically verifiable. Manual inspection is required. |
| 15 | 863 | Incorrect Authorization | Although it is possible to use static analysis to detect authorization issues, such analysis requires scanning with a further context, which is outside the scope of Insight analysis. In general, static analysis tools have difficulty producing a viable checker for detecting custom authorization schemes. |
| 16 | 829 | Inclusion of Functionality from Untrusted Control Sphere | Not statically verifiable. Typically associated with PHP code. |
| 17 | 732 | Incorrect Permission Assignment for Critical Resource | Checkers such as SV.USAGERULES.PERMISSIONS do provide some coverage, but typically, loose permissions for operations and custom permission models produce too many warnings from static analysis tools. |
| 18 | 676 | Use of Potentially Dangerous Function | Klocwork has built-in support for functions such as "SDL Banned Function Calls". Contact your Klocwork representative for instructions. |
| 19 | 327 | Use of a Broken or Risky Cryptographic Algorithm | Use Klocwork extensibility to identify commonly used libraries or features that have become obsolete. |
| 20 | 131 | Incorrect Calculation of Buffer Size | Klocwork will find cases of this as with 120. |
| 21 | 307 | Improper Restriction of Excessive Authentication Attempts | No checker currently available. |
| 22 | 601 | URL Redirection to Untrusted Site ('Open Redirect') | Manual inspection is required to determine whether input influences the beginning of a URL. |
| 23 | 134 | Uncontrolled Format String | SV.TAINTED.FMTSTR SV.FMTSTR.GENERIC |
| 24 | 190 | Integer Overflow or Wraparound | SV.INT_OVF |
| 25 | 759 | Use of a One-Way Hash without a Salt | No checker currently available. |
See also
 |
Language: |
English |