Spotting the Sin Pattern

Previous page
Table of content
Next page

Here are the elements to the pattern:

  • Commands (or control information) and data are placed inline next to each other.

  • There is some possibility that the data might get treated as a command, often due to characters with special meanings, such as quotes and semicolons.

  • Control over commands would give users more privileges than they already have.


Previous page
Table of content
Next page
19 Deadly Sins of Software Security. Programming Flaws and How to Fix Them
Writing Secure Code
ISBN: 71626751
EAN: 2147483647
Year: 2003
Pages: 239
Authors: Michael Howard, David LeBlanc
BUY ON AMAZON
Inside Network Security Assessment: Guarding Your IT Infrastructure
Network Security Architectures
Managing Enterprise Systems with the Windows Script Host
Junos Cookbook (Cookbooks (OReilly))
Visual Studio Tools for Office(c) Using C# with Excel, Word, Outlook, and InfoPath
VBScript in a Nutshell, 2nd Edition
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy