CWE-430

Deployment of Wrong Handler

AI Translation Available

The wrong 'handler' is assigned to process an object.

Status

incomplete

Abstraction

base

Affected Platforms

Extended Description

AI Translation

An example of deploying the wrong handler would be calling a servlet to reveal source code of a .JSP file, or automatically 'determining' type of the object even if it is contradictory to an explicitly specified type.

Technical Details

AI Translation

Common Consequences

integrity other

Impacts

varies by context unexpected state

Potential Mitigations

Phases:

architecture and design

Descriptions:

• Perform a type check before interpreting an object.

• Reject any inconsistent types, such as a file with a .GIF extension that appears to consist of PHP code.

AI Generated Translation

Common Consequences

integrità altro

Impacts

varia dal contesto stato inaspettato

Potential Mitigations

Phases:

architettura e design

Descriptions:

• Esegui un controllo del tipo prima di interpretare un oggetto.

• Rifiuta qualsiasi tipo incoerente, come un file con estensione .GIF che sembra contenere codice PHP.

CWE-430

Common Consequences

Impacts

Potential Mitigations

Common Consequences

Impacts

Potential Mitigations

Iscriviti alla newsletter