Software vulnerabilities can result when a programmer fails to consider all possible data states.
...
Failing to take into account all possibilities within a logic statement can lead to a corrupted running state, potentially resulting in unintentional information disclosure or abnormal termination.
Related Guidelines
| CERT C Secure Coding Standard | MSC01-C. Strive for logical completeness |
Bibliography
| [Hatton 1995] | §2.7.2, "Errors of Omission and Addition" |
| [Viega 2005] | §5.2.17, "Failure to Account for Default Case in Switch" |
| [Zadegan 2009] | A Lesson on Infinite Loops |
...