...
Allowing the application to abnormally terminate can lead to resources not being freed, closed, and so on. It is frequently a vector for denial-of-service attacks.
Rule | Severity | Likelihood | Remediation Cost | Priority | Level |
|---|---|---|---|---|---|
ERR51-CPP | Low | Probable | Medium | P4 | L3 |
Automated Detection
Tool | Version | Checker | Description | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Astrée |
| main-function-catch-all early-catch-all | Partially checked | ||||||
| Axivion Bauhaus Suite |
| CertC++-ERR51 | |||||||
| CodeSonar |
| LANG.STRUCT.UCTCH | Unreachable Catch | ||||||
| Helix QAC |
| C++4035, C++4036, C++4037 | |||||||
| Klocwork |
| MISRA.CATCH.ALL | |||||||
| LDRA tool suite |
| 527 S | Partially implemented | ||||||
| Parasoft C/C++test |
|
|
|
EXCEPT-13
CERT_CPP-ERR51-a | Always catch exceptions | ||||||||
| Polyspace Bug Finder |
| CERT C++: ERR51-CPP | Checks for unhandled exceptions (rule partially covered) | ||||||
| RuleChecker |
| main-function-catch-all early-catch-all | Partially checked |
Related Vulnerabilities
Search for other vulnerabilities resulting from the violation of this rule on the CERT website.
...
This rule is a subset of ERR50-CPP. Do not abruptly terminate the program.
Bibliography
| [ISO/IEC 14882-2014] | Subclause 15.1, "Throwing an Exception" |
| [MISRA 2008] | Rule 15-3-2 (Advisory) Rule 15-3-4 (Required) |
...
...