Use of Incorrect Byte Ordering
Draft Variant
Structure: Simple
Description
The product receives input from an upstream component, but it does not account for byte ordering (e.g. big-endian and little-endian) when processing the input, causing an incorrect number or value to be used.
Common Consequences 1
Scope: Integrity
Impact: Unexpected State
Detection Methods 1
Black Box
Because byte ordering bugs are usually very noticeable even with normal inputs, this bug is more likely to occur in rarely triggered error conditions, making them difficult to detect using black box methods.Applicable Platforms
Languages:
Not Language-Specific : Undetermined
Modes of Introduction
Implementation
Functional Areas
- Memory Management
Affected Resources
- Memory
Related Weaknesses
Taxonomy Mapping
- PLOVER
- The CERT Oracle Secure Coding Standard for Java (2011)
Notes
Research GapUnder-reported.