软件缺陷的分类都有哪些？ - 面试

TOP

软件缺陷的分类都有哪些？

2014-11-23 19:03:25 来源: 作者: 【大中小】浏览:8次

From wikipedia
Memory safety violations, such as:
Buffer overflows
Dangling pointers
Input validation errors, such as:
Format string bugs
Improperly handling shell metacharacters so they are interpreted
SQL injection
Code injection
E-mail injection
Directory traversal
Cross-site scripting in web applications
HTTP header injection
HTTP response splitting
Race conditions, such as:
Time-of-check-to-time-of-use bugs
Symlink races
Privilege-confusion bugs, such as:
Cross-site request forgery in web applications
Clickjacking
FTP bounce attack
Privilege escalation
User interface failures, such as:
Warning fatigue [2] or user conditioning [3]
Blaming the Victim Prompting a user to make a security decision without giving the user enough information to answer it [4]
Race Conditions [5]


【大中小】【打印】【繁体】【投稿】【收藏】【推荐】【举报】【评论】【关闭】【返回顶部】
分享到:
上一篇：ASP.NET中的身份验证有那些？你当..	下一篇：上海-飞马网络Java面试题

帐　　号:

密码: (新用户注册)

验证码:

表　　情:

内　　容: