System.exit() call terminates the container operation. Web application must not try to close its own container.

Perhaps the System.exit() call is a part of the debugging code that mistakenly was not removed from the final version of the application or a part of the code imported from a non-J2EE application.

Access to a function that can shut down the application is an avenue for Denial of Service (DoS) attacks. The shutdown function should be a privileged function available only to a properly authorized administrative user. Non-web applications may have a main() method that contains a System.exit(), but generally should not call System.exit() from other locations in the code.

Groovy : Call of System.exit()

DerScanner Severity Score

Do you want to fix Groovy : Call of System.exit() in your application?

See also