McGraw-Hill Professional values your privacy. By registering for the AccessEngineering Free Trial you agree to allow McGraw-Hill Professional to contact you through mail and email regarding special offers and new products. Please read our Privacy Notice to see how the information you have provided will be used. You can also write to: Privacy Officer, McGraw-Hill Professional, 1221 Avenue of the Americas, 46th Floor, New York, NY 10020. No purchase is necessary to take advantage of this offer. McGraw-Hill Professional reserves the right to discontinue the AccessEngineering Free Trial at any time with no advance notification.
FAILURE TO HANDLE ERRORS CORRECTLYFAILURE TO HANDLE ERRORS CORRECTLYOVERVIEW OF THE SINMany security risks are possible when programmers fail to handle an error condition correctly. Sometimes a program can end up in an insecure state, but more often the result is a denial of service issue, as the application simply dies. This problem is significant in even modern languages, such as C#, Ruby, Python, and Java, where the failure to handle an exception usually results in program termination by the run-time environment or operating system.…
Michael Howard; David LeBlanc; John Viega: 24 Deadly Sins of Software Security: Programming Flaws and How to Fix Them. FAILURE TO HANDLE ERRORS CORRECTLY, Chapter
(McGraw-Hill Professional, 2010), AccessEngineering