...
Failure to restore prior object state on method failure can leave the object in an inconsistent state and can violate required state invariants.
Rule | Severity | Likelihood | Remediation Cost | Priority | Level |
---|---|---|---|---|---|
ERR03-J | Low | Probable | High | P2 | L3 |
Automated Detection
Tool | Version | Checker | Description | ||||||
---|---|---|---|---|---|---|---|---|---|
Parasoft Jtest |
| BD.PB.REVOBJ | Restore prior object state on method failure |
Related Vulnerabilities
CVE-2008-0002 describes a vulnerability in several versions of Apache Tomcat. If an exception occurs during parameter processing, the program can be left in the context of the wrong request, which might allow remote attackers to obtain sensitive information. An exception can be triggered by disconnecting from Tomcat during this processing.
Related Guidelines
Bibliography
Item 64, "Strive for Failure Atomicity" |
...
...