CWE-587
Assignment of a Fixed Address to a Pointer
AI Translation Available
The product sets a pointer to a specific address other than NULL or 0.
Status
draft
Abstraction
variant
Affected Platforms
Assembly
C
C#
C++
Memory-Unsafe
Extended Description
AI Translation
Using a fixed address is not portable, because that address will probably not be valid in all environments or platforms.
Technical Details
AI Translation
Common Consequences
integrity
confidentiality
availability
Impacts
execute unauthorized code or commands
dos: crash, exit, or restart
reduce maintainability
reduce reliability
read memory
modify memory
Detection Methods
automated static analysis
automated dynamic analysis
Potential Mitigations
Phases:
implementation
Descriptions:
•
Never set a pointer to a fixed address.
Functional Areas
memory management