CWE-763 - Release of Invalid Pointer or Reference
- 摘要:Base
- 结构:Simple
- 状态:Incomplete
- 发布日期:2009-05-27
- 更新日期:2026-04-30
名称
Release of Invalid Pointer or Reference
描述
The product attempts to return a memory resource to the system, but it calls the wrong release function or calls the appropriate release function incorrectly.
This weakness can take several forms, such as:
常见后果
范围:Integrity, Availability, Confidentiality
影响:Modify Memory, DoS: Crash, Exit, or Restart, Execute Unauthorized Code or Commands
注释:This weakness may result in the corruption of memory, and perhaps instructions, possibly leading to a crash. If the corrupted memory can be effectively controlled, it may be possible to execute arbitrary code.