This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
J2EE Bad Practices: System.exit()
From OWASP
Revision as of 14:40, 19 July 2006 by Weilin Zhong (talk | contribs)
This is a Vulnerability. To view all vulnerabilities, please see the Vulnerability Category page.
Abstract
A web application should not attempt to shut down its container.
Description
It is never a good idea for a web application to attempt to shut down the application container. A call to System.exit() is probably part of leftover debug code or code imported from a non-J2EE application.