Backslash Vulnerability Database Logic/Time Bomb
Logic/Time Bomb
CWE-511
Short description
The product contains code that is designed to disrupt the legitimate operation of the product (or its environment) when a certain time passes, or when a certain logical condition is met.
Extended description
When the time bomb or logic bomb is detonated, it may perform a denial of service such as crashing the system, deleting critical data, or degrading system response time. This bomb might be placed within either a replicating or non-replicating Trojan horse.
Best practices to prevent this CWE
Phase: Installation
Always verify the integrity of the product that is being installed.
Phase: Testing
Conduct a code coverage analysis using live testing, then closely inspect any code that is not covered.