CWE-382 - J2EE Bad Practices: Use of System.exit()
- 摘要:Variant
- 结构:Simple
- 状态:Draft
- 发布日期:2006-07-19
- 更新日期:2025-12-11
名称
J2EE Bad Practices: Use of System.exit()
描述
A J2EE application uses System.exit(), which also shuts down its container.
It is never a good idea for a web application to attempt to shut down the application container. Access to a function that can shut down the application is an avenue for Denial of Service (DoS) attacks.
常见后果
范围:Availability
影响:DoS: Crash, Exit, or Restart