Missing Lock Check
Draft Base
Structure: Simple
Description
A product does not check to see if a lock is present before performing sensitive operations on a resource.
Common Consequences 1
Scope: IntegrityAvailability
Impact: Modify Application DataDoS: InstabilityDoS: Crash, Exit, or Restart
Potential Mitigations 1
Phase: Architecture and DesignImplementation
Implement a reliable lock mechanism.
Observed Examples 1
CVE-2004-1056Product does not properly check if a lock is present, allowing other attackers to access functionality.
Applicable Platforms
Languages:
Not Language-Specific : Undetermined
Modes of Introduction
Architecture and Design
Implementation
Related Weaknesses
ChildOf:
Improper Locking (CWE-667)
Taxonomy Mapping
- PLOVER
- Software Fault Patterns