![]() This means that the execution of the process may be altered by sending code in through legitimate data channels, using no other mechanism. The most important issue to note is that all injection problems share one thing in common - i.e., they allow for the injection of control plane data into the user-controlled data plane. For this reason, the most effective way to discuss these weaknesses is to note the distinct features which classify them as injection weaknesses. ![]() Injection problems encompass a wide variety of issues - all mitigated in very different ways. Such an alteration could lead to arbitrary code execution. When a product allows a user's input to contain code syntax, it might be possible for an attacker to craft the code in such a way that it will alter the intended control flow of the product.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |