CWE-683

Function Call With Incorrect Order of Arguments

The product calls a function, procedure, or routine, but the caller specifies the arguments in an incorrect order, leading to resultant weaknesses.

Mitigation

Phase: Implementation

Description:

  • Use the function, procedure, or routine as specified.
Mitigation

Phase: Testing

Description:

  • Because this function call often produces incorrect behavior it will usually be detected during testing or normal operation of the product. During testing exercise all possible control paths will typically expose this weakness except in rare cases when the incorrect function call accidentally produces the correct results or if the provided argument type is very similar to the expected argument type.

No CAPEC attack patterns related to this CWE.

Back to CWE stats page