[Forgot Password]
Login  Register Subscribe

23631

 
 

115084

 
 

97559

 
 

909

 
 

78730

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CWE
view XML

Files or Directories Accessible to External Parties

ID: 552Date: (C)2012-05-14   (M)2017-10-10
Type: weaknessStatus: DRAFT
Abstraction Type: Base





Description

Files or directories are accessible in the environment that should not be.

Applicable Platforms
None

Time Of Introduction

  • Implementation
  • Operation

Common Consequences

ScopeTechnical ImpactNotes
Confidentiality
Integrity
 
Read files or directories
Modify files or directories
 
 

Detection Methods
None

Potential Mitigations
None

Relationships

Related CWETypeViewChain
CWE-552 ChildOf CWE-895 Category CWE-888  

Demonstrative Examples
None

White Box Definitions
None

Black Box Definitions
None

Taxynomy Mappings

TaxynomyIdNameFit
OWASP Top Ten 2004 A10
 
Insecure Configuration Management
 
CWE_More_Specific
 
CERT C Secure Coding FIO15-C
 
Ensure that file operations are performed in a secure directory
 
 
CERT C++ Secure Coding FIO15-CPP
 
Ensure that file operations are performed in a secure directory
 
 

References:
None

© 2013 SecPod Technologies