| CWE-577 |
The program violates the Enterprise JavaBeans (EJB) specification by using sockets. |
| CWE-578 |
The program violates the Enterprise JavaBeans (EJB) specification by using the class loader. |
| CWE-579 |
The application stores a non-serializable object as an HttpSession attribute, which can hurt reliability. |
| CWE-58 |
The software contains a protection mechanism that restricts access to a long filename on a Windows operating system, but the software does not properly restrict access to the equivalent short "8.3" filename. |
| CWE-580 |
The software contains a clone() method that does not call super.clone() to obtain the new object. |
| CWE-581 |
The software does not maintain equal hashcodes for equal objects. |
| CWE-582 |
The program declares an array public, final, and static, which is not sufficient to prevent the array's contents from being modified. |
| CWE-583 |
The program violates secure coding principles for mobile code by declaring a finalize() method public. |
| CWE-584 |
The code has a return statement inside a finally block, which will cause any thrown exception in the try block to be discarded. |
| CWE-585 |
The software contains an empty synchronized block. |
