[Forgot Password]
Login  Register Subscribe

23631

 
 

115084

 
 

97559

 
 

909

 
 

78730

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CWE
view XML

Integer Overflow to Buffer Overflow

ID: 680Date: (C)2012-05-14   (M)2012-11-08
Type: compound elementStatus: DRAFT
Abstraction Type: Base





Description

The product performs a calculation to determine how much memory to allocate, but an integer overflow can occur that causes less memory to be allocated than expected, leading to a buffer overflow.

Applicable Platforms
Language Class: All

Related Attack Patterns

Common Consequences

ScopeTechnical ImpactNotes
Integrity
Availability
Confidentiality
 
Modify memory
DoS: crash / exit / restart
Execute unauthorized code or commands
 
 

Detection Methods
None

Potential Mitigations
None

Relationships

Related CWETypeViewChain
CWE-680 StartsWith CWE-190 Weakness CWE-709 CWE-680 

Demonstrative Examples
None

White Box Definitions
None

Black Box Definitions
None

Taxynomy Mappings
None

References:
None

© 2013 SecPod Technologies