logo

Failure to Handle Incomplete Element

Draft Variant
Structure: Simple
Description

The product does not properly handle when a particular element is not completely specified.

Common Consequences 1
Scope: IntegrityOther

Impact: Varies by ContextUnexpected State
Observed Examples 4
CVE-2002-1532HTTP GET without \r\n\r\n CRLF sequences causes product to wait indefinitely and prevents other users from accessing it.
CVE-2003-0195Partial request is not timed out.
CVE-2005-2526MFV. CPU exhaustion in printer via partial printing request then early termination of connection.
CVE-2002-1906CPU consumption by sending incomplete HTTP requests and leaving the connections open.
Applicable Platforms
Languages:
Not Language-Specific : Undetermined
Modes of Introduction
Implementation
Related Weaknesses
ChildOf: Improper Handling of Structural Elements (CWE-237)
PeerOf: Improper Resource Shutdown or Release (CWE-404)
Taxonomy Mapping
  • PLOVER