You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 6 Next »

This rule is a stub.

Noncompliant Code Example

This noncompliant code example shows an example where ...

 

 

Compliant Solution

In this compliant solution, ...

 

Risk Assessment

If non-serializable objects are stored as attributes in an HTTP session then ...

Rule

Severity

Likelihood

Remediation Cost

Priority

Level

MSC08-J

Low

Probable

High

P2

L3

Automated Detection

TBD

Bibliography

[Fortify 2014]Fortify Diagnostic
 HTTPSession J2EE Documentation [Note. This is a JavaEE 5 reference. I cannot find the corresponding API in Java 7.]

 


  • No labels