CWE-774: Allocation of File Descriptors or Handles Without Limits or Throttling
CWE版本: 4.18
更新日期: 2025-09-09
弱点描述
The product allocates file descriptors or handles on behalf of an actor without imposing any restrictions on how many descriptors can be allocated, in violation of the intended security policy for that actor.
扩展描述
This can cause the product to consume all available file descriptors or handles, which can prevent other processes from performing critical file processing operations.
常见后果
影响范围: Availability
技术影响: DoS: Resource Consumption (Other)
说明: When allocating resources without limits, an attacker could prevent all other processes from accessing the same type of resource.
潜在缓解措施
阶段: Operation Architecture and Design
策略: Resource Limitation
引入模式
| 阶段 | 说明 |
|---|---|
| Architecture and Design | - |
| Implementation | - |
分类映射
| 分类名称 | 条目ID | 条目名称 | 映射适配度 |
|---|---|---|---|
| Software Fault Patterns | SFP13 | Unrestricted Consumption | - |