CWE-236: Improper Handling of Undefined Parameters

Description

The product does not handle or incorrectly handles when a particular parameter, field, or argument name is not defined or supported by the product.

Extended Description

N/A

ThreatScore

Threat Mapped score: 0.0

Industry: Finiancial

Threat priority: Unclassified

Observed Examples (CVEs)

CVE: CVE-2002-1488

Crash in IRC client via PART message from a channel the user is not in.
CVE: CVE-2001-0650

Router crash or bad route modification using BGP updates with invalid transitive attribute.

Related Attack Patterns (CAPEC)

N/A

Attack TTPs

N/A

Modes of Introduction

Phase	Note
Implementation	N/A

Common Consequences

Impact: Unexpected State — Notes:

Potential Mitigations

None listed.

Applicable Platforms

None (Not Language-Specific, Undetermined)

Demonstrative Examples

N/A

Notes

No notes available.

← Back to CWE list