Types of Flaws

1. Intentional

1.1. Malicious

1.2. Non malicious

2. Inadvertent

2.1. Validation errors

2.2. Domain errors

2.3. Serializaton or aliasing

2.4. Inadequate ID and Authentication

2.5. Boundary condition violations

2.6. Misc exploitable logic erros

2.7. Lack of rigours parament checking

2.7.1. Buffer overflows can come from other problems

2.7.1.1. Most common source of vulnerabiliteis

2.7.1.2. Buffer overflows can place data in

2.7.1.2.1. user data areas

2.7.1.2.2. system data areas

2.7.1.2.3. User code areas

2.7.1.2.4. system code areas