CWE-787 - Out-of-bounds Write

  • 摘要:Base
  • 结构:Simple
  • 状态:Draft
  • 发布日期:2009-10-29
  • 更新日期:2026-04-30

名称

Out-of-bounds Write

描述

The product writes data past the end, or before the beginning, of the intended buffer.

常见后果

范围:Integrity

影响:Modify Memory, Execute Unauthorized Code or Commands

注释:Write operations could cause memory corruption. In some cases, an adversary can modify control data such as return addresses in order to execute unexpected code.

范围:Availability

影响:DoS: Crash, Exit, or Restart

注释:Attempting to access out-of-range, invalid, or unauthorized memory could cause the product to crash.

范围:Other

影响:Unexpected State

注释:Subsequent write operations can produce undefined or unexpected results.

相关 CWE

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferHigh