Test case 129611

Type: source code
State: mixed
Status: candidate
Language: Java
Submission Date: 21 May 2013

Description

CWE: 190 Integer Overflow
BadSource: getQueryString_Servlet Parse id param out of the URL query string (without using getParameter())
GoodSource: A hardcoded non-zero, non-min, non-max, even number
Sinks: multiply
GoodSink: Ensure there will not be an overflow before multiplying data by 2
BadSink : If data is positive, multiply by 2, which can cause an overflow
Flow Variant: 14 Control flow: if(IO.staticFive==5) and if(IO.staticFive!=5)

Flaws

CWE-190 Integer Overflow or Wraparound

Test Suites

Juliet Java 1.3 with extra support
Juliet Java 1.2
Juliet Java 1.2 with extra support
Juliet Java 1.3

Documentation

Juliet 1.3 Test Suite: Changes From 1.2
Release Log for Juliet 1.3
Juliet v1.2 for Java cases.pdf

Have any comments on this test case? Please, send us an email.