Back to the previous page

Test Case ID	5
Bad / Good	Bad
Author	N/A
Associated test case	N/A
Contributor	SecureSoftware
Language	C
Type of test case	Source Code

Input string	N/A
Expected Output	Strlen() output: 0
Instructions	N/A
Submission date	2005-10-21
Description	Improper string length checking takes place when wide or multi-byte character strings are mistaken for standard character strings. (from TCCLASP-5_2_15_10)
Filename	./Improper_string_length_checking.c (453 bytes)
Flaw	CWE-133: String Errors at line 11 + Root CWE-019: Data Handling CWE-118: Improper Access of Indexable Resource (Range Error) CWE-119: Failure to Constrain Operations within the Bounds of an Allocated Memory Buffer CWE-133: String Errors

There is 1 comment :: Submit a comment ::

>./Improper_string_length_checking.c

#include <stdio.h>
#include <strings.h>
#include <wchar.h>
int main() {
wchar_t wideString[] = L"The spazzy orange tiger jumped � \
�over the tawny jaguar.";
wchar_t *newString;
newString = (wchar_t *) malloc(strlen(wideString));
 
printf("Strlen() output: %d\nWcslen() output: %d\n",
strlen(wideString), wcslen(wideString));
 
/* The above code gives the following output:
Strlen() output: 0
Wcslen() output: 53
*/
}

Back to the previous page

See the comments