CWE-498: Cloneable Class Containing Sensitive Information

Description

The code contains a class with sensitive data, but the class is cloneable. The data can then be accessed by cloning the class.

Extended Description

Cloneable classes are effectively open classes, since data cannot be hidden in them. Classes that do not explicitly deny cloning can be cloned by any other class without running the constructor.

ThreatScore

Threat Mapped score: 0.0

Industry: Finiancial

Threat priority: Unclassified

Observed Examples (CVEs)

No observed examples available.

Related Attack Patterns (CAPEC)

N/A

Attack TTPs

N/A

Modes of Introduction

Phase	Note
Implementation	N/A

Common Consequences

Impact: Bypass Protection Mechanism — Notes: A class that can be cloned can be produced without executing the constructor. This is dangerous since the constructor may perform security-related checks. By allowing the object to be cloned, those checks may be bypassed.

Potential Mitigations

Implementation: If you do make your classes clonable, ensure that your clone method is final and throw super.clone(). (N/A)

Applicable Platforms

C++ (N/A, Undetermined)
Java (N/A, Undetermined)
C# (N/A, Undetermined)

Demonstrative Examples

Intro: The following example demonstrates the weakness.

Body: Make classes uncloneable by defining a clone function like:

public class CloneClient { public CloneClient() //throws java.lang.CloneNotSupportedException { Teacher t1 = new Teacher("guddu","22,nagar road"); //... // Do some stuff to remove the teacher. Teacher t2 = (Teacher)t1.clone(); System.out.println(t2.name); } public static void main(String args[]) { new CloneClient(); } } class Teacher implements Cloneable { public Object clone() { try { return super.clone(); } catch (java.lang.CloneNotSupportedException e) { throw new RuntimeException(e.toString()); } } public String name; public String clas; public Teacher(String name,String clas) { this.name = name; this.clas = clas; } }

Notes

No notes available.

← Back to CWE list