SEI CERT Oracle Coding Standard for Java

Space shortcuts

Page tree

Versions Compared

Old Version 128

changes.mady.by.user Will Snavely

Saved on

compared with

New Version Current

changes.mady.by.user David Svoboda

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: REM cost reform

...

Deploying a Java application with the JVMTI, JPDA, or remote monitoring enabled can allow an attacker to monitor or modify its behavior.

Rule

Severity

Likelihood

Remediation Cost

Detectable

Repairable

Priority

Level

ENV05-J

High

Probable

No

Low

No

P18

P6

L1

L2

Automated Detection

This rule is not amenable to automated static analysis.

...

JVMTI is not supported on the Dalvik VM.

Bibliography

[JMX 2006]

 


[JMXG 2006]

 


[JPDA 2004]

 


[JVMTI 2006]

 


[Long 2005]

Section 2.6, "The JVM Tool Interface"
Section 2.7, "Debugging"
Section 2.8, "Monitoring and Management"

[Reflect 2006]

Reflection

...


...