-
Notifications
You must be signed in to change notification settings - Fork 52
Home
sam bacha edited this page Jul 11, 2022
·
2 revisions
| Type | Mnemonic | Stack Input | Stack Output | Expression | Notes |
|---|---|---|---|---|---|
| 00 | STOP | - | - | STOP() | halts execution of the contract |
| type | description |
|---|---|
| Incorrect Check of Function Return Value | "The software incorrectly checks a return value from a function, which prevents the software from detecting errors or exceptional conditions." |
| Improper Check for Dropped Privileges | The software attempts to drop privileges but does not check or incorrectly checks to see if the drop succeeded. |
| Improper Handling of Insufficient Permissions or Privileges | The application does not handle or incorrectly handles when it has insufficient privileges to access resources or functionality as specified by their permissions. This may cause it to follow unexpected code paths that may leave the application in an invalid state. |
| Detection of Error Condition Without Action | "The software detects a specific error, but takes no actions to handle the error." |
| Unchecked Error Condition | Ignoring exceptions and other error conditions may allow an attacker to induce unexpected behavior unnoticed. |
| Unexpected Status Code or Return Value | "The software does not properly check when a function or operation returns a value that is legitimate for the function but is not expected by the software." |
| Missing Handler | A handler is not available or implemented. |
| Failure to Catch All Exceptions in Servlet Missing Handler | "A Servlet fails to catch all exceptions, which may reveal sensitive debugging information." |
| Failure to Catch-All Exceptions in Servlet Improper Initialization | "The software does not initialize or incorrectly initializes a resource, which might leave the resource in an unexpected state when it is accessed or used." |
| Missing Default Case in Switch Statement | "The code does not have a default case in a switch statement, which might lead to complex logical errors and resultant weaknesses." |
| Omitted Break Statement in Switch | "The program omits a break statement within a switch or similar construct, causing code associated with multiple conditions to execute. This can cause problems when the programmer only intended to execute code associated with one" |