CQE - CQE-9129: Output Formatting Control (Draft 0.9)

	Common Quality Enumeration A Community-Developed Dictionary of Quality Issues
Home \| CQE List \| About CQE
Search by ID:

CQE-9129: Output Formatting Control

Output Formatting Control

[an error occurred while processing this directive] Definition in a New Window

Practice ID: 9129

Maturity: Preliminary

Description

Description Summary

Formatting Control

Extended Description

Software that is unaware of formatting control incurs the risk of execution of arbitrary code, excessive memory or disk consumption, or the risk of information disclosure, which can severely simplify exploitation of the software.

Relationships

Nature	Type	ID	Name	View(s) this relationship pertains to View
CanPrecede	Co Consequence	9017	Arbitrary Code Execution	Default Graph (primary)9001
CanPrecede	Co Consequence	9058	Security Vulnerabilities	Default Graph (primary)9001
CanPrecede	Co Consequence	9189	Information Disclosure	Default Graph (primary)9001
ParentOf	Is Issue	134	Format String Improper Input Neutralization	Quality Issues Organized by Practices (primary)9002

Page Last Updated or Reviewed: October 01, 2017


	This Web site is sponsored and managed by The MITRE Corporation to enable stakeholder collaboration. Copyright © 2006-2024, The MITRE Corporation. CQE, CWE, and the CQE logo are trademarks of The MITRE Corporation. Contact cqe@mitre.org for more information.	Privacy policy Terms of use Contact us

Common Quality Enumeration

CQE-9129: Output Formatting Control