Insufficient Resource Pool

Incomplete Class

Structure: Simple

Description

The product's resource pool is not large enough to handle peak demand, which allows an attacker to prevent others from accessing the resource by using a (relatively) large number of requests for resources.

Extended Description

Frequently the consequence is a "flood" of connection or sessions.

Common Consequences 1

Scope: AvailabilityIntegrityOther

Impact: DoS: Crash, Exit, or RestartOther

Floods often cause a crash or other problem besides denial of the resource itself; these are likely examples of *other* vulnerabilities, not an insufficient resource pool.

Potential Mitigations 5

Phase: Architecture and Design

Do not perform resource-intensive transactions for unauthenticated users and/or invalid requests.

Phase: Architecture and Design

Consider implementing a velocity check mechanism which would detect abusive behavior.

Phase: Operation

Consider load balancing as an option to handle heavy loads.

Phase: Implementation

Make sure that resource handles are properly closed when no longer needed.

Phase: Architecture and Design

Identify the system's resource intensive operations and consider protecting them from abuse (e.g. malicious automated script which runs the resources out).

Demonstrative Examples 1

In the following snippet from a Tomcat configuration file, a JDBC connection pool is defined with a maximum of 5 simultaneous connections (with a 60 second timeout). In this case, it may be trivial for an attacker to instigate a denial of service (DoS) by using up all of the available connections in the pool.

Code Example:Bad
XML
xml

Observed Examples 3

CVE-1999-1363Large number of locks on file exhausts the pool and causes crash.

CVE-2001-1340Product supports only one connection and does not disconnect a user who does not provide credentials.

CVE-2002-0406Large number of connections without providing credentials allows connection exhaustion.

References 1

Writing Secure Code

Michael Howard and David LeBlanc

Microsoft Press

04-12-2002

https://www.microsoftpressstore.com/store/writing-secure-code-9780735617223

ID: REF-7

Applicable Platforms

Languages:

Not Language-Specific : Undetermined

Modes of Introduction

Architecture and Design

Implementation

Operation

Related Weaknesses

ChildOf:

Improper Control of a Resource Through its Lifetime (CWE-664)

CanPrecede:

Uncontrolled Resource Consumption (CWE-400)

Taxonomy Mapping

PLOVER
OWASP Top Ten 2004
The CERT Oracle Secure Coding Standard for Java (2011)