CWE-168 - Improper Handling of Inconsistent Special Elements

CWE ID:

CWE-168

Abstraction:Base
Structure:Simple
Status:Draft

Release Date:2006-07-19
Latest Modification Date:2024-02-29

Weakness Name

Improper Handling of Inconsistent Special Elements

Description

The product does not properly handle input in which an inconsistency exists between two or more special characters or reserved words.

An example of this problem would be if paired characters appear in the wrong order, or if the special characters are not properly nested.

Common Consequences

Scope: Availability, Access Control, Non-Repudiation

Impact: DoS: Crash, Exit, or Restart, Bypass Protection Mechanism, Hide Activities

Related Weaknesses

CWE-159Improper Handling of Invalid Use of Special Elements

CWE-228Improper Handling of Syntactically Invalid Structure

Top Security News

Latest CVE List

Top Alert List

CSP
Content Security Policy (CSP) Header Not Set
MediumAbsence of Anti-CSRF Tokens
MediumMissing Anti-clickjacking Header
InformationalInformation Disclosure - Suspicious Comments
LowCross-Domain JavaScript Source File Inclusion
MediumContent Security Policy (CSP) Header Not Set
LowTimestamp Disclosure - Unix
LowCSP: X-Content-Security-Policy
InformationalRe-examine Cache-control Directives

Common CWEs