This rule is a stub.
Noncompliant Code Example
This noncompliant code example shows an example where ...
Compliant Solution
In this compliant solution, ...
Risk Assessment
If nonserializable objects are stored as attributes in an HTTP session then ...
Rule | Severity | Likelihood | Remediation Cost | Priority | Level |
|---|---|---|---|---|---|
MSC08-J | Low | Probable | High | P2 | L3 |
Automated Detection
TBD
Bibliography
| [Fortify 2014] | Fortify Diagnostic |
| HTTPSession J2EE Documentation [Note. This is a JavaEE 5 reference. I cannot find the corresponding API in Java 7.] |
