Back to the previous page

Test Case ID	4
Bad / Good	Bad
Author	N/A
Associated test case	N/A
Contributor	SecureSoftware
Language	C
Type of test case	Source Code

Input string	N/A
Expected Output	The last character in shortString is: l 6c
Instructions	N/A
Submission date	2005-10-21
Description	Miscalculated null termination occurs when the placement of a null character at the end of a buffer of characters (or string) is misplaced or omitted. (from TCCLASP-5_2_14_9)
Filename	./Miscalculated_null_termination.c (468 bytes)
Flaw	CWE-170: Improper Null Termination at line 6 + Root CWE-019: Data Handling CWE-118: Improper Access of Indexable Resource (Range Error) CWE-119: Failure to Constrain Operations within the Bounds of an Allocated Memory Buffer CWE-133: String Errors CWE-170: Improper Null Termination

There is 1 comment :: Submit a comment ::

>./Miscalculated_null_termination.c

#include <stdio.h>
#include <string.h>
int main() {
char longString[] = "Cellular bananular phone";
char shortString[16];
strncpy(shortString, longString, 16);
printf("The last character in shortString is: %c %1$x\n",
shortString[15]);
return (0);
 
/*
The above code gives the following output:
The last character in shortString is: l 6c
So, the shortString array does not end in a NULL character, even though the
�safe� string function strncpy() was used.
*/}
 
 
 
 
 
 
 
 

Back to the previous page

See the comments