Page History

...

Tool	Version	Checker	Description
Coverity	7.5	UNSAFE_DESERIALIZATION	Implemented
Parasoft Jtest	9.5	SERIAL.RRSC	Implemented

Related Guidelines

MITRE CWE	CWE-502, "Deserialization of Untrusted Data"
Secure Coding Guidelines for Java SE, Version 5.0	Guideline 8-3 / SERIAL-3: View deserialization the same as object construction

...