38 lines
686 B
Plaintext
38 lines
686 B
Plaintext
|
include::../description.adoc[]
|
||
|
|
|
||
|
|
include::../ask-yourself.adoc[]
|
||
|
|
|
||
|
|
include::../recommended.adoc[]
|
||
|
|
|
||
|
|
== Sensitive Code Example
|
||
|
|
|
||
|
|
----
|
||
|
|
Imports System.Security
|
||
|
|
Imports System.Diagnostics
|
||
|
|
|
||
|
|
Namespace N
|
||
|
|
Class A
|
||
|
|
Public Sub Foo(ByVal process As Process)
|
||
|
|
Process.Start("file.exe") ' Sensitive: file.exe will be searched in PATH directories
|
||
|
|
End Sub
|
||
|
|
End Class
|
||
|
|
End Namespace
|
||
|
|
----
|
||
|
|
|
||
|
|
== Compliant Solution
|
||
|
|
|
||
|
|
----
|
||
|
|
Imports System.Security
|
||
|
|
Imports System.Diagnostics
|
||
|
|
|
||
|
|
Namespace N
|
||
|
|
Class A
|
||
|
|
Public Sub Foo(ByVal process As Process)
|
||
|
|
Process.Start("/usr/bin/file.exe") ' Compliant
|
||
|
|
End Sub
|
||
|
|
End Class
|
||
|
|
End Namespace
|
||
|
|
----
|
||
|
|
|
||
|
|
include::../see.adoc[]
|