软件缺陷的分类都有哪些
From wikipedia
Memory safety violations, such as:
Buffer overflows
Dangling pointers
Input validation errors, such as:
Format string bugs
Improperly handling shell metacharacters so they are interpreted
SQL injection
Code injection
E-mail injection
Directory traversal
Cross-site scripting in web applications
HTTP header injection
HTTP response splitting
Race conditions, such as:
Time-of-check-to-time-of-use bugs
Symlink races
Privilege-confusion bugs, such as:
Cross-site request forgery in web applications
Clickjacking
FTP bounce attack
Privilege escalation
User interface failures, such as:
Warning fatigue [2] or user conditioning [3]
Blaming the Victim Prompting a user to make a security decision without giving the user enough information to answer it [4]
Race Conditions [5]
Memory safety violations, such as:
Buffer overflows
Dangling pointers
Input validation errors, such as:
Format string bugs
Improperly handling shell metacharacters so they are interpreted
SQL injection
Code injection
E-mail injection
Directory traversal
Cross-site scripting in web applications
HTTP header injection
HTTP response splitting
Race conditions, such as:
Time-of-check-to-time-of-use bugs
Symlink races
Privilege-confusion bugs, such as:
Cross-site request forgery in web applications
Clickjacking
FTP bounce attack
Privilege escalation
User interface failures, such as:
Warning fatigue [2] or user conditioning [3]
Blaming the Victim Prompting a user to make a security decision without giving the user enough information to answer it [4]
Race Conditions [5]
【软件缺陷的分类都有哪些】相关文章
1. 软件缺陷的分类都有哪些
3. SQL Server的固定数据库角色都有哪些?对应的服务器权限有哪些?
4. 职场EQ的分类
7. 劳动合同期限有哪些分类
8. 传统面试中的常见缺陷
10. 瀑布模型都有哪些优缺点
本文来源:https://www.mianshiwenti.com/a12022.html
进入下载页面
上一篇:山海经纬软件测试笔试题和面试题
下一篇:企业面试题试卷附带答案
﹝软件缺陷的分类都有哪些﹞相关内容
- 提高EJB性能都有哪些技巧
- EJB3.1都有哪些改进
- EntityManager都有哪些方法
- HttpServlet类中的主要方法都有哪些?各自的作用是什么?
- Servlet都有哪些方法?主要作用是什么?
- JPA的优势都有哪些
- PHP数据运算类型都有哪些
- JAVA和C++区别都有哪些
- C语言变量的命名规则都有哪些
- 什么是Oracle的后台进程background processes?都有哪些后台进程?