Containment Errors (Container Errors) |
Weakness ID: 216 (Weakness Class) | Status: Incomplete |
Description Summary
This tries to cover various problems in which improper data are included within a "container."
Compartmentalize your system to have "safe" areas where trust boundaries can be unambiguously drawn. Do not allow sensitive data to go outside of the trust boundary and always be careful when interfacing with a compartment outside of the safe area. |
Nature | Type | ID | Name | View(s) this relationship pertains to |
---|---|---|---|---|
ChildOf | Category | 199 | Information Management Errors | Development Concepts (primary)699 |
ChildOf | Weakness Class | 485 | Insufficient Encapsulation | Research Concepts (primary)1000 |
RequiredBy | Compound Element: Composite | 61 | UNIX Symbolic Link (Symlink) Following | Research Concepts1000 |
RequiredBy | Compound Element: Composite | 426 | Untrusted Search Path | Research Concepts1000 |
ParentOf | Weakness Variant | 219 | Sensitive Data Under Web Root | Development Concepts (primary)699 Research Concepts1000 |
ParentOf | Weakness Variant | 220 | Sensitive Data Under FTP Root | Development Concepts (primary)699 |
ParentOf | Weakness Variant | 493 | Critical Public Variable Without Final Modifier | Research Concepts1000 |
PeerOf | Weakness Base | 98 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP File Inclusion') | Research Concepts1000 |
Mapped Taxonomy Name | Node ID | Fit | Mapped Node Name |
---|---|---|---|
PLOVER | Containment errors (container errors) |
This entry is closely associated with others related to encapsulation and permissions, and might ultimately prove to be a duplicate. |
Submissions | ||||
---|---|---|---|---|
Submission Date | Submitter | Organization | Source | |
PLOVER | Externally Mined | |||
Modifications | ||||
Modification Date | Modifier | Organization | Source | |
2008-07-01 | Eric Dalci | Cigital | External | |
updated Time of Introduction | ||||
2008-09-08 | CWE Content Team | MITRE | Internal | |
updated Maintenance Notes, Relationships, Taxonomy Mappings | ||||
2009-05-27 | CWE Content Team | MITRE | Internal | |
updated Relationships |