The mobile application includes data that matches the pattern of a Universally Unique Identifier (UUID) in a request to an external host. UUIDs are used by a mobile application to uniquely identify a single user. This helps the mobile device to sync accounts, personalize content, etc., specific to the user.

UUIDs are recommended to track user-specific workflows, but they should not be sent to external vendors or third party apps for tracking. UUIDs are specifically created to personalize the user's experience within the app. Such personally identifiable information (PII) should not be shared with external entities without the user's consent. Doing so would be considered a privacy violation.

Attackers can manipulate product prices if the application accepts unvalidated data and overrides existing values with the attacker supplied data. Pricing attacks can occur when:
1. The application relies on weak client-side protections such as hidden form input fields and in turn expose sensitive information to manipulation
2. Fails to perform server-side validation against an allow list of acceptable values

Programs that run with root privileges have caused innumerable Unix security disasters. It is imperative that you carefully review privileged programs for all kinds of security problems, but it is equally important that privileged programs drop back to an unprivileged state as quickly as possible in order to limit the amount of damage that an overlooked vulnerability might be able to cause.


Privilege management functions can behave in some less-than-obvious ways, and they have different quirks on different platforms. These inconsistencies are particularly pronounced if you are transitioning from one non-root user to another.

Signal handlers and spawned processes run at the privilege of the owning process, so if a process is running as root when a signal fires or a sub-process is executed, the signal handler or sub-process will operate with root privileges. An attacker may be able to leverage these elevated privileges to do further damage.

iOS specific SMS-related operations should not be performed unless they are essential to the core functionality of an application. Malware written for mobile devices often abuses such functionality to steal money or data from the user.

Example 1: In following cases, the application sends an SMS message or precomposes and presents an SMS message to the user that he or she is prompted to send or cancel:

...
Device.OpenUri("sms:+12345678910");
...

Spring provides an easy mechanism to turn any Spring managed bean into an object that is exposed externally via RMI, HTTP, Burlap, Hessian, and JMX protocols. Any public method of the remoted Spring bean can be called externally and the data being passed between the client and the remoted objects are in plain text. The major problem with these services is that they are open by default and provide no guarantees of confidentiality or integrity out of the box.

Spring provides an easy mechanism to turn any Spring managed bean into web services via Spring WS or XFire. Any public method of the remoted Spring bean can be called externally and the data being passed between the client and the web service enabled objects are in plain text. The major problem with these services is that they are open by default and provide no guarantees of confidentiality or integrity out of the box.

Windows provides the MultiByteToWideChar(), WideCharToMultiByte(), UnicodeToBytes(), and BytesToUnicode() functions to convert between arbitrary multibyte (usually ANSI) character strings and Unicode (wide character) strings. The size arguments to these functions are specified in different units--one in bytes, the other in characters--making their use prone to error. In a multibyte character string, each character occupies a varying number of bytes, and therefore the size of such strings is most easily specified as a total number of bytes. In Unicode, however, characters are always a fixed size, and string lengths are typically given by the number of characters they contain. Mistakenly specifying the wrong units in a size argument can lead to a buffer overflow.

Example: The following function takes a username specified as a multibyte string and a pointer to a structure for user information and populates the structure with information about the specified user. Since Windows authentication uses Unicode for usernames, the username argument is first converted from a multibyte string to a Unicode string.

void getUserInfo(char *username, struct _USER_INFO_2 info){
WCHAR unicodeUser[UNLEN+1];
MultiByteToWideChar(CP_ACP, 0, username, -1,
     unicodeUser, sizeof(unicodeUser));
NetUserGetInfo(NULL, unicodeUser, 2, (LPBYTE *)&info);
}

This function incorrectly passes the size of unicodeUser in bytes instead of characters. The call to MultiByteToWideChar() can therefore write up to (UNLEN+1)*sizeof(WCHAR) wide characters, or (UNLEN+1)*sizeof(WCHAR)*sizeof(WCHAR) bytes, to the unicodeUser array, which has only (UNLEN+1)*sizeof(WCHAR) bytes allocated. If the username string contains more than UNLEN characters, the call to MultiByteToWideChar() will overflow the buffer unicodeUser.