CWE-463: Deletion of Data Structure Sentinel
CWE版本: 4.18
更新日期: 2025-09-09
弱点描述
The accidental deletion of a data-structure sentinel can cause serious programming logic problems.
扩展描述
Often times data-structure sentinels are used to mark structure of the data structure. A common example of this is the null character at the end of strings. Another common example is linked lists which may contain a sentinel to mark the end of the list. It is dangerous to allow this type of control data to be easily accessible. Therefore, it is important to protect from the deletion or modification outside of some wrapper interface which provides safety.
常见后果
影响范围: Availability Other
技术影响: Other
说明: Generally this error will cause the data structure to not work properly.
影响范围: Authorization Other
技术影响: Other
说明: If a control character, such as NULL is removed, one may cause resource access control problems.
潜在缓解措施
阶段: Architecture and Design
描述: Use an abstraction library to abstract away risky APIs. Not a complete solution.
阶段: Build and Compilation
策略: Compilation or Build Hardening
有效性: Defense in Depth
阶段: Operation
描述: Use OS-level preventative functionality. Not a complete solution.
引入模式
| 阶段 | 说明 |
|---|---|
| Implementation | - |
适用平台
编程语言
分类映射
| 分类名称 | 条目ID | 条目名称 | 映射适配度 |
|---|---|---|---|
| CLASP | - | Deletion of data-structure sentinel | - |