Back to the previous page

Test Case ID	10
Bad / Good	Bad
Author	N/A
Associated test case	N/A
Contributor	SecureSoftware
Language	C
Type of test case	Source Code

Input string	N/A
Expected Output	N/A
Instructions	N/A
Submission date	2005-10-27
Description	Format string problems occur when a user has the ability to control or write completely the format string used to format data in the printf style family of C/ C++ functions. (from TCCLASP-5_2_23_10)
Filename	./Format_string_problem.c (910 bytes)
Flaw	CWE-134: Uncontrolled Format String at line 27 + Root CWE-019: Data Handling CWE-118: Improper Access of Indexable Resource (Range Error) CWE-119: Failure to Constrain Operations within the Bounds of an Allocated Memory Buffer CWE-133: String Errors CWE-134: Uncontrolled Format String

There is 1 comment :: Submit a comment ::

>./Format_string_problem.c

/* This software was developed at the National Institute of Standards and Technology by employees of the Federal Government
in the course of their official duties. Pursuant to title 17 Section 105 of the United States Code
this software is not subject to copyright protection and is in the public domain.
NIST assumes no responsibility whatsoever for its use by other parties,
and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic.
This test case is derived from an example found in the Secure Software Inc. CLASP v2.0 User Guide.
*/
 
/* The following example is exploitable, due to the printf() call in the printWrapper()
function. Note: The stack buffer was added to make exploitation more
simple.
*/
 
#include <stdio.h>
 
int main(int argc, char **argv) {
 
char buf[5012];
 
memcpy(buf, argv[1], 5012);
 
printf(argv[1]);  /*  Bad */
 
return (0);
 
}

Back to the previous page

See the comments